Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
npm vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-16069
nodeffmpeg was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Nodeffmpeg Project Nodeffmpeg
7.5
CVSSv3
CVE-2017-16070
nodecaffe was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Nodecaffe Project Nodecaffe
7.5
CVSSv3
CVE-2017-16073
noderequest was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Noderequest Project Noderequest
7.5
CVSSv3
CVE-2017-16077
mongose was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Mongose Project Mongose
7.5
CVSSv3
CVE-2017-16079
smb was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Smb Project Smb
5.3
CVSSv3
CVE-2019-5447
A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows malicious users to list files in arbitrary folders.
Http-file-server Project Http-file-server
7.5
CVSSv3
CVE-2017-16044
`d3.js` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
D3.js Project D3.js
7.5
CVSSv3
CVE-2017-16048
`node-sqlite` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Node-sqlite Project Node-sqlite
7.5
CVSSv3
CVE-2017-16052
`node-fabric` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Node-fabric Project Node-fabric
9.8
CVSSv3
CVE-2020-8129
An unintended require vulnerability in script-manager npm package version 0.8.6 and previous versions may allow malicious users to execute arbitrary code.
Script-manager Project Script-manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »