Vulnerability DB

VULNERABILITY	AFFECTS	TYPE	PUBLISHED
C Malicious Package	@lbnqduy11805/refactored-octo-carnival *	npm	10 Apr 2024
C Malicious Package	@lbnqduy11805/turbo-octo-memory *	npm	10 Apr 2024
C Malicious Package	shuaishuaiqiang *	npm	10 Apr 2024
C Malicious Package	@lbnqduy11805/musical-doodle *	npm	10 Apr 2024
C Malicious Package	@lbnqduy11805/sturdy-chainsaw *	npm	10 Apr 2024
C Malicious Package	@lbnqduy11805/potential-octo-enigma *	npm	10 Apr 2024
C Malicious Package	shuaiqiang *	npm	10 Apr 2024
C Malicious Package	test-npm-lifecycle *	npm	10 Apr 2024
C Malicious Package	@sber-site/sbercraft-nova-kit *	npm	10 Apr 2024
C Malicious Package	@lbnqduy11805/psychic-waffle *	npm	10 Apr 2024
C Remote Code Execution (RCE)	mysql2 <3.9.4	npm	10 Apr 2024
H Improper Control of Generation of Code ('Code Injection')	maildev *	npm	9 Apr 2024
M Prototype Poisoning	mysql2 <3.9.4	npm	9 Apr 2024
M Improper Input Validation	mysql2 <3.9.3	npm	9 Apr 2024
M Cross-site Scripting (XSS)	formstone <1.4.17	npm	9 Apr 2024
C Malicious Package	tokenaddress *	npm	8 Apr 2024
C Malicious Package	f3ngtest12345677 *	npm	8 Apr 2024
C Malicious Package	recxn-backup *	npm	8 Apr 2024
C Malicious Package	recxn-logs *	npm	8 Apr 2024
C Malicious Package	nespresso-bi *	npm	8 Apr 2024
C Malicious Package	djs-colora *	npm	8 Apr 2024
C Malicious Package	payable-js-ipg-sdk *	npm	8 Apr 2024
C Malicious Package	discord-logs-v14 *	npm	8 Apr 2024
C Malicious Package	payable-js-ipg-sdk-suba *	npm	8 Apr 2024
M Unrestricted Upload of File with Dangerous Type	psitransfer <2.2.0	npm	7 Apr 2024
M Unrestricted Upload of File with Dangerous Type	psitransfer <2.2.0	npm	7 Apr 2024
H Channel Accessible by Non-Endpoint ('Man-in-the-Middle')	dectalk-tts <1.0.1	npm	5 Apr 2024
C Malicious Package	lodash-electron *	npm	5 Apr 2024
L Improper Authorization	undici <5.28.4 >=6.0.0 <6.11.1	npm	5 Apr 2024
L Improper Access Control	undici <5.28.4 >=6.0.0 <6.11.1	npm	5 Apr 2024

APPLICATION

OPERATING SYSTEM