FLAT-3XIRA (MAL-2026-5066)
Use of software with malware In ethers-hash
5.2
Medium
Ecosystem: Npm
Package: ethers-hash
FLAT-22W2T (MAL-2026-4827)
Use of software with malware In unleash-js
5.2
Medium
Ecosystem: Npm
Package: unleash-js
FLAT-5WSRS (MAL-2026-4296)
Use of software with malware In mcp-dashboards-shared
5.2
Medium
Ecosystem: Npm
Package: mcp-dashboards-shared
FLAT-53TON (CVE-2026-47372)
Insecure generation of random numbers In libcrypt-saltedhash-perl
1.3
Low
Ecosystem: Debian
Package: libcrypt-saltedhash-perl
FLAT-R7SSM (CVE-2026-47373)
Lack of data validation - Path Traversal In libcrypt-saltedhash-perl
1.7
Low
Ecosystem: Debian
Package: libcrypt-saltedhash-perl
FLAT-KTX4Q (MAL-2026-4541)
Use of software with malware In crypto-hash-sdk
5.2
Medium
Ecosystem: Npm
Package: crypto-hash-sdk
FLAT-R2D25 (MAL-2026-4160)
Use of software with malware In @apps-home-dashboard/events
5.2
Medium
Ecosystem: Npm
Package: @apps-home-dashboard/events
FLAT-0FHMG (MAL-2026-3703)
Use of software with malware In crypto-hash-utils
5.2
Medium
Ecosystem: PyPI
Package: crypto-hash-utils
FLAT-BGAOX (CVE-2026-8052)
Lack of data validation - Path Traversal In github.com/hashicorp/nomad-driver-exec2
5.4
Medium
Ecosystem: Go
Package: github.com/hashicorp/nomad-driver-exec2
FLAT-8YU4D (CVE-2026-6959)
Lack of data validation - Path Traversal In github.com/hashicorp/nomad
5.4
Medium
Ecosystem: Go
Package: github.com/hashicorp/nomad
FLAT-QKXIY (CVE-2026-7474)
Lack of data validation - Path Traversal In github.com/hashicorp/nomad
7.7
High
Ecosystem: Go
Package: github.com/hashicorp/nomad
FLAT-QNW5G (CVE-2026-31253)
Server side template injection In flash-attn
5.9
Medium
Ecosystem: PyPI
Package: flash-attn
FLAT-AG3RO (CVE-2026-44212)
Server side cross-site scripting In prestashop/prestashop
7.5
High
Ecosystem: Packagist
Package: prestashop/prestashop
FLAT-5QLY9 (CVE-2026-38361)
Lack of data validation In dash-uploader
9.1
Critical
Ecosystem: PyPI
Package: dash-uploader
FLAT-ZKJM4 (CVE-2026-44514)
Lack of data validation In github.com/kubetail-org/kubetail/modules/dashboard
3.8
Low
Ecosystem: Go
Package: github.com/kubetail-org/kubetail/modules/dashboard
FLAT-L8X84 (CVE-2026-7776)
Asymmetric denial of service In github.com/hashicorp/boundary
6.3
Medium
Ecosystem: Go
Package: github.com/hashicorp/boundary
FLAT-BO8VP (CVE-2026-42483)
Out-of-bounds read In hashcat
7.4
High
Ecosystem: Debian
Package: hashcat
FLAT-9LTSF (CVE-2026-42482)
Improper resource allocation - Buffer overflow In hashcat
5.6
Medium
Ecosystem: Debian
Package: hashcat
FLAT-LUV9S (CVE-2026-42484)
Out-of-bounds read In hashcat
7.6
High
Ecosystem: Debian
Package: hashcat
FLAT-DTQJA (GHSA-mqq7-wxx5-mp8h)
Lack of data validation In prestashop/ps_checkout
2.7
Low
Ecosystem: Packagist
Package: prestashop/ps_checkout
FLAT-2V27Q (CVE-2026-5807)
Asymmetric denial of service In github.com/hashicorp/vault
7.7
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-0K9PM (CVE-2026-3605)
Security controls bypass or absence In github.com/hashicorp/vault
4.3
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-BE7AQ (CVE-2026-5052)
Server-side request forgery (SSRF) In github.com/hashicorp/vault
1.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-7RAY8 (CVE-2026-4525)
Sensitive information sent insecurely In github.com/hashicorp/vault
5.9
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-R4DJN (MAL-2026-2700)
Use of software with malware In conventional-changelog-dash
5.2
Medium
Ecosystem: Npm
Package: conventional-changelog-dash
FLAT-QMCY8 (MAL-2026-2681)
Use of software with malware In @athena-ui-components/dashboard-widget
5.2
Medium
Ecosystem: Npm
Package: @athena-ui-components/dashboard-widget
FLAT-SMD4L (MAL-2026-2615)
Use of software with malware In upstartadmindashboard-
5.2
Medium
Ecosystem: Npm
Package: upstartadmindashboard-
FLAT-GMJCC (MAL-2026-2580)
Use of software with malware In @cash-web/no-hardcoded-font-styles
5.2
Medium
Ecosystem: Npm
Package: @cash-web/no-hardcoded-font-styles
FLAT-CK632 (CVE-2026-4660)
Local file inclusion In github.com/hashicorp/go-getter
7.7
High
Ecosystem: Go
Package: github.com/hashicorp/go-getter
FLAT-EACU9 (CVE-2021-40153)
Lack of data validation - Path Traversal In squashfs-tools
5.1
Medium
Ecosystem: Alpm
Package: squashfs-tools
FLAT-XUZGH (CVE-2021-41072)
Lack of data validation - Path Traversal In squashfs-tools
4.8
Medium
Ecosystem: Alpm
Package: squashfs-tools
FLAT-0JWXY (CVE-2014-6277)
Lack of data validation In bash
1.3
Low
Ecosystem: Alpm
Package: bash
FLAT-JORIF (MAL-2026-2452)
Use of software with malware In strapi-plugin-blurhash
5.2
Medium
Ecosystem: Npm
Package: strapi-plugin-blurhash
FLAT-GDHXG (GHSA-3hfp-gqgh-xc5g)
Use of software with malware In @lightdash/cli
6.1
Medium
Ecosystem: Npm
Package: @lightdash/cli
FLAT-S4UF4 (CVE-2026-4800)
Server side template injection In lodash-es
6.1
Medium
Ecosystem: Npm
Package: lodash-es
FLAT-12T0Z (CVE-2026-2950)
Prototype Pollution In lodash.unset
2.7
Low
Ecosystem: Npm
Package: lodash.unset
FLAT-DEJF9 (CVE-2026-34593)
Improper resource allocation In ash
4.6
Medium
Ecosystem: Hex
Package: ash
FLAT-97S8I (CVE-2026-33673)
Server side cross-site scripting In prestashop/prestashop
5.7
Medium
Ecosystem: Packagist
Package: prestashop/prestashop
FLAT-O3J5G (CVE-2026-33674)
Lack of data validation In prestashop/prestashop
1.0
Low
Ecosystem: Packagist
Package: prestashop/prestashop
FLAT-AX1OE (MAL-2026-2118)
Use of software with malware In hash-utils-py
5.2
Medium
Ecosystem: PyPI
Package: hash-utils-py
FLAT-QT1XW (MAL-2026-1956)
Use of software with malware In llmstash
5.2
Medium
Ecosystem: Npm
Package: llmstash
FLAT-OE86D (MAL-2026-1941)
Use of software with malware In client-hash-sdk
5.2
Medium
Ecosystem: Npm
Package: client-hash-sdk
FLAT-QP54P (MAL-2026-1708)
Use of software with malware In dns-filter-dashboard
5.2
Medium
Ecosystem: Npm
Package: dns-filter-dashboard
FLAT-ORRBQ (MAL-2026-1642)
Use of software with malware In @upstashed/context7-mcp
5.2
Medium
Ecosystem: Npm
Package: @upstashed/context7-mcp
FLAT-NX38F (MAL-2026-1417)
Use of software with malware In twitch.dashboard-v2.core
5.2
Medium
Ecosystem: Npm
Package: twitch.dashboard-v2.core
FLAT-GUIJK (CVE-2026-2808)
Lack of data validation - Path Traversal In github.com/hashicorp/consul
3.6
Low
Ecosystem: Go
Package: github.com/hashicorp/consul
FLAT-NMGZX (CVE-2026-3527)
Improper authorization control for web services In drupal/ajax_dashboard
1.7
Low
Ecosystem: Packagist
Package: drupal/ajax_dashboard
FLAT-N2LSP (MAL-2026-1110)
Use of software with malware In loadash-lint
5.2
Medium
Ecosystem: Npm
Package: loadash-lint
FLAT-DJJSX (MAL-2026-1080)
Use of software with malware In hashtools32
5.2
Medium
Ecosystem: PyPI
Package: hashtools32
FLAT-X81N1 (CVE-2026-27610)
Lack of data validation - Path Traversal In parse-dashboard
3.8
Low
Ecosystem: Npm
Package: parse-dashboard
FLAT-XGMZD (CVE-2026-27609)
Cross-site request forgery In parse-dashboard
5.7
Medium
Ecosystem: Npm
Package: parse-dashboard
FLAT-EV5ZK (CVE-2026-27608)
Improper authorization control for web services In parse-dashboard
7.5
High
Ecosystem: Npm
Package: parse-dashboard
FLAT-CL3IC (CVE-2026-27595)
Authentication mechanism absence or evasion In parse-dashboard
8.9
High
Ecosystem: Npm
Package: parse-dashboard
FLAT-C7GTF (MAL-2026-846)
Use of software with malware In cryptowallethash
5.2
Medium
Ecosystem: PyPI
Package: cryptowallethash
FLAT-UGGTV (MAL-2026-791)
Use of software with malware In @hashicorp-internal/vault-reporting
5.2
Medium
Ecosystem: Npm
Package: @hashicorp-internal/vault-reporting
FLAT-EZMDX (MAL-2026-767)
Use of software with malware In 0xhash-utils
5.2
Medium
Ecosystem: Npm
Package: 0xhash-utils
FLAT-8KGF8 (JS-LODASHSET-1320032)
Prototype Pollution In lodash.set
0.6
Low
Ecosystem: Npm
Package: lodash.set
FLAT-UQ43U (CVE-2026-25597)
Lack of data validation - Path Traversal In prestashop/prestashop
2.7
Low
Ecosystem: Packagist
Package: prestashop/prestashop
FLAT-Q3ZZK (MAL-2026-564)
Use of software with malware In chai-as-hashed
5.2
Medium
Ecosystem: Npm
Package: chai-as-hashed
FLAT-HFKZ9 (MAL-2026-469)
Use of software with malware In cflashfiles
5.2
Medium
Ecosystem: PyPI
Package: cflashfiles
FLAT-QD47T (MAL-2026-460)
Use of software with malware In pay-by-bank-dashboard-server
5.2
Medium
Ecosystem: Npm
Package: pay-by-bank-dashboard-server
FLAT-CT3XH (CVE-2025-13465)
Prototype Pollution In lodash.unset
5.0
Medium
Ecosystem: Npm
Package: lodash.unset
FLAT-YV08K (MAL-2026-6)
Use of software with malware In ziphash
5.2
Medium
Ecosystem: PyPI
Package: ziphash
FLAT-9ZYEH (MAL-2025-192635)
Use of software with malware In parashaxmgflhg
5.2
Medium
Ecosystem: Npm
Package: parashaxmgflhg
FLAT-788ZK (MAL-2025-192560)
Use of software with malware In kashif-mallah-fca
5.2
Medium
Ecosystem: Npm
Package: kashif-mallah-fca
FLAT-N416L (CVE-2025-67642)
Excessive privileges In com.datapipe.jenkins.plugins:hashicorp-vault-plugin
5.7
Medium
Ecosystem: Maven
Package: com.datapipe.jenkins.plugins:hashicorp-vault-plugin
FLAT-TPW9Z (CVE-2025-65548)
Improper resource allocation In cashu
7.9
High
Ecosystem: PyPI
Package: cashu
FLAT-136UR (MAL-2025-192377)
Use of software with malware In gs-uitk-lodash
5.2
Medium
Ecosystem: Npm
Package: gs-uitk-lodash
FLAT-9LRH2 (MAL-2025-191554)
Use of software with malware In tensorfi-secure-hash
5.2
Medium
Ecosystem: Npm
Package: tensorfi-secure-hash
FLAT-1CI4K (MAL-2025-191574)
Use of software with malware In eslint-lodash
5.2
Medium
Ecosystem: Npm
Package: eslint-lodash
FLAT-1EU8K (DLA-4392-1)
Use of software with malware In mistral-dashboard
6.0
Medium
Ecosystem: Debian
Package: mistral-dashboard
FLAT-A7MEZ (MAL-2025-190954)
Use of software with malware In dashboard-empty-state
5.2
Medium
Ecosystem: Npm
Package: dashboard-empty-state
FLAT-71F2W (MAL-2025-190753)
Use of software with malware In @posthog/siphash
5.2
Medium
Ecosystem: Npm
Package: @posthog/siphash
FLAT-5GYLN (MAL-2025-190667)
Use of software with malware In @ensdomains/eth-ens-namehash
5.2
Medium
Ecosystem: Npm
Package: @ensdomains/eth-ens-namehash
FLAT-9KNLY (MAL-2025-190666)
Use of software with malware In @ensdomains/content-hash
5.2
Medium
Ecosystem: Npm
Package: @ensdomains/content-hash
FLAT-6H0EE (MAL-2025-190628)
Use of software with malware In hash-guard
5.2
Medium
Ecosystem: Npm
Package: hash-guard
FLAT-MF43Z (MAL-2025-190617)
Use of software with malware In doordash-ui
5.2
Medium
Ecosystem: Npm
Package: doordash-ui
FLAT-JPV2Y (CVE-2025-13357)
Insecure service configuration In github.com/hashicorp/terraform-provider-vault
8.1
High
Ecosystem: Go
Package: github.com/hashicorp/terraform-provider-vault
FLAT-A2G68 (MAL-2025-186034)
Use of software with malware In cat-void-bash-cache-bundle
5.2
Medium
Ecosystem: Npm
Package: cat-void-bash-cache-bundle
FLAT-AAW2M (MAL-2025-187190)
Use of software with malware In good-chi-nu-info-hash
5.2
Medium
Ecosystem: Npm
Package: good-chi-nu-info-hash
FLAT-HQIEQ (MAL-2025-185650)
Use of software with malware In auriga-parcel-soap-nashira
5.2
Medium
Ecosystem: Npm
Package: auriga-parcel-soap-nashira
FLAT-IBD9F (MAL-2025-187286)
Use of software with malware In hash-uglify-cluster-info-orchestrate
5.2
Medium
Ecosystem: Npm
Package: hash-uglify-cluster-info-orchestrate
FLAT-JAQ23 (MAL-2025-189449)
Use of software with malware In serialize-bash-authenticate-execute-cloud
5.2
Medium
Ecosystem: Npm
Package: serialize-bash-authenticate-execute-cloud
FLAT-5AIPU (MAL-2025-187386)
Use of software with malware In hugo-nashira-boson-passport
5.2
Medium
Ecosystem: Npm
Package: hugo-nashira-boson-passport
FLAT-2R1Z6 (MAL-2025-186373)
Use of software with malware In cron-kappa-bash-serialize-beta
5.2
Medium
Ecosystem: Npm
Package: cron-kappa-bash-serialize-beta
FLAT-9U92D (MAL-2025-186365)
Use of software with malware In cosmos-yonder-grunt-nashira
5.2
Medium
Ecosystem: Npm
Package: cosmos-yonder-grunt-nashira
FLAT-6D07R (MAL-2025-185909)
Use of software with malware In brane-nashira-cluster-spawn
5.2
Medium
Ecosystem: Npm
Package: brane-nashira-cluster-spawn
FLAT-HFAS5 (MAL-2025-189732)
Use of software with malware In sun-cold-upsilon-deploy-hash
5.2
Medium
Ecosystem: Npm
Package: sun-cold-upsilon-deploy-hash
FLAT-70R6E (MAL-2025-189804)
Use of software with malware In taphonomy-commitlint-kardashevscale-loglevel
5.2
Medium
Ecosystem: Npm
Package: taphonomy-commitlint-kardashevscale-loglevel
FLAT-9Z9U7 (MAL-2025-186035)
Use of software with malware In catch-bash-mu-daemon-slow
5.2
Medium
Ecosystem: Npm
Package: catch-bash-mu-daemon-slow
FLAT-017IV (MAL-2025-185448)
Use of software with malware In analyze-abstract-hash-code-iota
5.2
Medium
Ecosystem: Npm
Package: analyze-abstract-hash-code-iota
FLAT-DW62X (MAL-2025-186706)
Use of software with malware In electron-tool-nashira-gemini
5.2
Medium
Ecosystem: Npm
Package: electron-tool-nashira-gemini
FLAT-IDZV4 (MAL-2025-188170)
Use of software with malware In nashira-betelgeuse-astrometry-callback
5.2
Medium
Ecosystem: Npm
Package: nashira-betelgeuse-astrometry-callback
FLAT-J45O2 (MAL-2025-190007)
Use of software with malware In try-alert-hash-catch-index
5.2
Medium
Ecosystem: Npm
Package: try-alert-hash-catch-index
FLAT-JC0O5 (MAL-2025-188734)
Use of software with malware In planetology-borealis-nashira-celeste
5.2
Medium
Ecosystem: Npm
Package: planetology-borealis-nashira-celeste
FLAT-4XZBT (MAL-2025-187802)
Use of software with malware In lint-antares-luna-nashira
5.2
Medium
Ecosystem: Npm
Package: lint-antares-luna-nashira
FLAT-2ILYE (MAL-2025-187017)
Use of software with malware In fork-crust-filament-kardashevscale
5.2
Medium
Ecosystem: Npm
Package: fork-crust-filament-kardashevscale
FLAT-4RKJ4 (MAL-2025-190022)
Use of software with malware In uglify-bash-index-beta-interface
5.2
Medium
Ecosystem: Npm
Package: uglify-bash-index-beta-interface
FLAT-0CPA5 (MAL-2025-187005)
Use of software with malware In fomalhaut-nashira-webdriverio-init
5.2
Medium
Ecosystem: Npm
Package: fomalhaut-nashira-webdriverio-init
FLAT-G7FDA (MAL-2025-186464)
Use of software with malware In daemon-epsilon-hash-link-slow
5.2
Medium
Ecosystem: Npm
Package: daemon-epsilon-hash-link-slow