FLAT-30W6D (MAL-2026-5090)
Use of software with malware In neuralforge-ml
5.2
Medium
Ecosystem: PyPI
Package: neuralforge-ml
FLAT-S4AE4 (MAL-2026-3790)
Use of software with malware In jenkins-forge-utils
5.2
Medium
Ecosystem: Npm
Package: jenkins-forge-utils
FLAT-EBUD3 (MAL-2026-3789)
Use of software with malware In jenkins-forge-app
5.2
Medium
Ecosystem: Npm
Package: jenkins-forge-app
FLAT-R832Y (MAL-2026-3609)
Use of software with malware In forge-jsxy
5.2
Medium
Ecosystem: Npm
Package: forge-jsxy
FLAT-5DTOI (MAL-2026-2714)
Use of software with malware In @gameforge/http-server
5.2
Medium
Ecosystem: Npm
Package: @gameforge/http-server
FLAT-21J1G (MAL-2026-2884)
Use of software with malware In forge-jsx
5.2
Medium
Ecosystem: Npm
Package: forge-jsx
FLAT-97RZK (CVE-2026-33895)
Lack of data validation In node-forge
7.7
High
Ecosystem: Npm
Package: node-forge
FLAT-Q13DC (MAL-2026-2243)
Use of software with malware In browserstack-electron-forge-include-package-plugin
5.2
Medium
Ecosystem: Npm
Package: browserstack-electron-forge-include-package-plugin
FLAT-GAHY5 (MAL-2026-1633)
Use of software with malware In @nxt-costco-com/forge-icons
5.2
Medium
Ecosystem: Npm
Package: @nxt-costco-com/forge-icons
FLAT-RN2KQ (MAL-2026-1632)
Use of software with malware In @nxt-costco-com/forge-design-tokens
5.2
Medium
Ecosystem: Npm
Package: @nxt-costco-com/forge-design-tokens
FLAT-3ZA2F (MAL-2026-1631)
Use of software with malware In @nxt-costco-com/forge-components
5.2
Medium
Ecosystem: Npm
Package: @nxt-costco-com/forge-components
FLAT-3A9S8 (CVE-2026-28338)
Server side cross-site scripting In net.sourceforge.pmd:pmd-core
4.0
Medium
Ecosystem: Maven
Package: net.sourceforge.pmd:pmd-core
FLAT-RPOC0 (CVE-2026-0858)
Server side cross-site scripting In net.sourceforge.plantuml:plantuml
1.2
Low
Ecosystem: Maven
Package: net.sourceforge.plantuml:plantuml
FLAT-GN8WY (CVE-2025-15280)
Lack of data validation In fontforge
7.4
High
Ecosystem: Debian
Package: fontforge
FLAT-AF979 (CVE-2025-15279)
Out-of-bounds read In fontforge
7.3
High
Ecosystem: Debian
Package: fontforge
FLAT-6VYNZ (CVE-2025-15278)
Out-of-bounds read In fontforge
7.3
High
Ecosystem: Debian
Package: fontforge
FLAT-UX9JP (CVE-2025-15277)
Out-of-bounds read In fontforge
7.2
High
Ecosystem: Debian
Package: fontforge
FLAT-WLDV4 (CVE-2025-15276)
Lack of data validation In fontforge
5.4
Medium
Ecosystem: Debian
Package: fontforge
FLAT-OFVTR (CVE-2025-15275)
Lack of data validation In fontforge
7.4
High
Ecosystem: Debian
Package: fontforge
FLAT-46VE5 (CVE-2025-15274)
Lack of data validation In fontforge
7.2
High
Ecosystem: Debian
Package: fontforge
FLAT-99TVK (CVE-2025-15273)
Lack of data validation In fontforge
7.6
High
Ecosystem: Debian
Package: fontforge
FLAT-AQ1BM (CVE-2025-15272)
Lack of data validation In fontforge
7.2
High
Ecosystem: Debian
Package: fontforge
FLAT-838YW (CVE-2025-15271)
Out-of-bounds read In fontforge
7.4
High
Ecosystem: Debian
Package: fontforge
FLAT-MGLGS (CVE-2025-15270)
Out-of-bounds read In fontforge
7.7
High
Ecosystem: Debian
Package: fontforge
FLAT-5HS8C (CVE-2025-15269)
Lack of data validation In fontforge
5.7
Medium
Ecosystem: Debian
Package: fontforge
FLAT-ICGVN (CVE-2025-66031)
Improper resource allocation In node-forge
6.6
Medium
Ecosystem: Npm
Package: node-forge
FLAT-WPONJ (CVE-2025-66030)
Out-of-bounds read In node-forge
1.7
Low
Ecosystem: Npm
Package: node-forge
FLAT-OJ2WS (CVE-2025-12816)
Lack of data validation In node-forge
6.6
Medium
Ecosystem: Npm
Package: node-forge
FLAT-ACWWM (MAL-2025-190701)
Use of software with malware In redux-forge
5.2
Medium
Ecosystem: Npm
Package: redux-forge
FLAT-UNQD8 (MAL-2025-155336)
Use of software with malware In goodmanmax9250-forget-grow
5.2
Medium
Ecosystem: Npm
Package: goodmanmax9250-forget-grow
FLAT-4PYMM (MAL-2025-96109)
Use of software with malware In pulseforgeasdeho
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdeho
FLAT-VX6LN (MAL-2025-96111)
Use of software with malware In pulseforgeasdehq
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehq
FLAT-4PLHE (MAL-2025-96105)
Use of software with malware In pulseforgeasdehk
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehk
FLAT-7QJ12 (MAL-2025-96104)
Use of software with malware In pulseforgeasdehj
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehj
FLAT-86U6V (MAL-2025-96112)
Use of software with malware In pulseforgeasdehr
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehr
FLAT-D8EPC (MAL-2025-96106)
Use of software with malware In pulseforgeasdehl
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehl
FLAT-R37K0 (MAL-2025-96103)
Use of software with malware In pulseforgeasdehi
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehi
FLAT-G2AIK (MAL-2025-96107)
Use of software with malware In pulseforgeasdehm
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehm
FLAT-O669I (MAL-2025-96110)
Use of software with malware In pulseforgeasdehp
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehp
FLAT-N0KTA (MAL-2025-96108)
Use of software with malware In pulseforgeasdehn
5.2
Medium
Ecosystem: Npm
Package: pulseforgeasdehn
FLAT-SUYHZ (MAL-2025-49101)
Use of software with malware In muleforge
5.2
Medium
Ecosystem: Npm
Package: muleforge
FLAT-5D4CG (CVE-2025-64147)
Non-encrypted confidential information In org.jenkins-ci.plugins:curseforge-publisher
0.6
Low
Ecosystem: Maven
Package: org.jenkins-ci.plugins:curseforge-publisher
FLAT-3NL43 (CVE-2025-64146)
Non-encrypted confidential information In org.jenkins-ci.plugins:curseforge-publisher
0.6
Low
Ecosystem: Maven
Package: org.jenkins-ci.plugins:curseforge-publisher
FLAT-TK6UW (MAL-2025-48597)
Use of software with malware In shadeforge
5.2
Medium
Ecosystem: Npm
Package: shadeforge
FLAT-CDV0P (CVE-2025-50951)
Improper resource allocation In fontforge
2.7
Low
Ecosystem: Debian
Package: fontforge
FLAT-FCAVG (CVE-2025-50949)
Improper resource allocation In fontforge
2.7
Low
Ecosystem: Debian
Package: fontforge
FLAT-095SF (MAL-2025-44383)
Use of software with malware In geeksforgeeks-js-zh
5.2
Medium
Ecosystem: Npm
Package: geeksforgeeks-js-zh
FLAT-JCC81 (MAL-2025-8800)
Use of software with malware In @malware-test-musks-golem-forge-vicar/test-mlw3-musks-golem-forge-vicar
5.2
Medium
Ecosystem: Npm
Package: @malware-test-musks-golem-forge-vicar/test-mlw3-musks-golem-forge-vicar
FLAT-54POG (MAL-2025-26855)
Use of software with malware In mtgforge
5.2
Medium
Ecosystem: Npm
Package: mtgforge
FLAT-RMEA1 (MAL-2025-20779)
Use of software with malware In forge-vscode
5.2
Medium
Ecosystem: Npm
Package: forge-vscode
FLAT-DCL5S (MAL-2025-35365)
Use of software with malware In test-mlw2-forge-burse
5.2
Medium
Ecosystem: Npm
Package: test-mlw2-forge-burse
FLAT-NVHH1 (MAL-2025-5868)
Use of software with malware In @forge-ui-components/media-player
5.2
Medium
Ecosystem: Npm
Package: @forge-ui-components/media-player
FLAT-HNLTO (MAL-2025-5516)
Use of software with malware In react-forget-runtime
5.2
Medium
Ecosystem: Npm
Package: react-forget-runtime
FLAT-OKLIB (CVE-2025-1293)
Authentication mechanism absence or evasion In github.com/hashicorp-forge/hermes
5.7
Medium
Ecosystem: Go
Package: github.com/hashicorp-forge/hermes
FLAT-RQOC7 (CVE-2025-23215)
Sensitive information in source code In net.sourceforge.pmd:pmd-core
8.1
High
Ecosystem: Maven
Package: net.sourceforge.pmd:pmd-core
FLAT-5SYJ5 (MAL-2024-11536)
Use of software with malware In bitforger
5.2
Medium
Ecosystem: PyPI
Package: bitforger
FLAT-Z75LR (MAL-2024-5155)
Use of software with malware In forgepy
5.2
Medium
Ecosystem: PyPI
Package: forgepy
FLAT-16RR0 (MAL-2024-4493)
Use of software with malware In forge.open.ai
5.2
Medium
Ecosystem: NuGet
Package: forge.open.ai
FLAT-KWAWB (MAL-2024-3118)
Use of software with malware In @harrysforge-ui/text
5.2
Medium
Ecosystem: Npm
Package: @harrysforge-ui/text
FLAT-J1U0W (MAL-2024-1807)
Use of software with malware In @harrysforge-ui/badge
5.2
Medium
Ecosystem: Npm
Package: @harrysforge-ui/badge
FLAT-QYSZS (DSA-5641-1)
Lack of data validation - Path Traversal In fontforge
1.3
Low
Ecosystem: Debian
Package: fontforge
FLAT-I0P4O (DLA-3754-1)
Lack of data validation In fontforge
1.3
Low
Ecosystem: Debian
Package: fontforge
FLAT-HO2DB (CVE-2024-25081)
Server side template injection In fontforge
2.7
Low
Ecosystem: Debian
Package: fontforge
FLAT-3B2RJ (CVE-2024-25082)
Server side template injection In fontforge
2.7
Low
Ecosystem: Debian
Package: fontforge
FLAT-DWF5I (CVE-2023-49948)
Sensitive information sent insecurely In codeberg.org/forgejo/forgejo
1.3
Low
Ecosystem: Go
Package: codeberg.org/forgejo/forgejo
FLAT-DA73T (CVE-2023-49946)
Improper authorization control for web services In codeberg.org/forgejo/forgejo
8.0
High
Ecosystem: Go
Package: codeberg.org/forgejo/forgejo
FLAT-C4U3T (CVE-2023-49947)
Authentication mechanism absence or evasion In codeberg.org/forgejo/forgejo
6.6
Medium
Ecosystem: Go
Package: codeberg.org/forgejo/forgejo
FLAT-FLLUA (CVE-2023-26119)
Lack of data validation In net.sourceforge.htmlunit:htmlunit
9.1
Critical
Ecosystem: Maven
Package: net.sourceforge.htmlunit:htmlunit
FLAT-1U2EO (CVE-2023-3432)
Server-side request forgery (SSRF) In net.sourceforge.plantuml:plantuml
2.7
Low
Ecosystem: Maven
Package: net.sourceforge.plantuml:plantuml
FLAT-K51Z2 (CVE-2023-3431)
Improper authorization control for web services In net.sourceforge.plantuml:plantuml-mit
2.7
Low
Ecosystem: Maven
Package: net.sourceforge.plantuml:plantuml-mit
FLAT-PPLXI (CVE-2023-34624)
Improper resource allocation In net.sourceforge.htmlcleaner:htmlcleaner
6.6
Medium
Ecosystem: Maven
Package: net.sourceforge.htmlcleaner:htmlcleaner
FLAT-MLFSN (MAL-2022-5021)
Use of software with malware In odeforge
5.2
Medium
Ecosystem: Npm
Package: odeforge
FLAT-VRHQV (MAL-2022-3104)
Use of software with malware In forge-app-bones
5.2
Medium
Ecosystem: Npm
Package: forge-app-bones
FLAT-9BCZW (MAL-2022-958)
Use of software with malware In amazon-s3-find-and-forget
5.2
Medium
Ecosystem: Npm
Package: amazon-s3-find-and-forget
FLAT-ETMA8 (MAL-2022-329)
Use of software with malware In @harrysforge/universal-analytics-enhanced-ecommerce
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/universal-analytics-enhanced-ecommerce
FLAT-3ELLU (MAL-2022-326)
Use of software with malware In @harrysforge/token-provider
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/token-provider
FLAT-34BSS (MAL-2022-327)
Use of software with malware In @harrysforge/tooltip
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/tooltip
FLAT-M9NTL (MAL-2022-328)
Use of software with malware In @harrysforge/transition
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/transition
FLAT-KWFTF (MAL-2022-325)
Use of software with malware In @harrysforge/text
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/text
FLAT-X5UX9 (MAL-2022-323)
Use of software with malware In @harrysforge/storage
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/storage
FLAT-M4699 (MAL-2022-322)
Use of software with malware In @harrysforge/slide-in
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/slide-in
FLAT-VCR5I (MAL-2022-324)
Use of software with malware In @harrysforge/subscription-sdk
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/subscription-sdk
FLAT-BQ8RK (MAL-2022-320)
Use of software with malware In @harrysforge/product-displays
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/product-displays
FLAT-LCTC2 (MAL-2022-318)
Use of software with malware In @harrysforge/media-hero
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/media-hero
FLAT-Q6Y5E (MAL-2022-321)
Use of software with malware In @harrysforge/select
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/select
FLAT-1GPCL (MAL-2022-317)
Use of software with malware In @harrysforge/input-field
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/input-field
FLAT-NBNR7 (MAL-2022-319)
Use of software with malware In @harrysforge/number-stepper
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/number-stepper
FLAT-TMHWW (MAL-2022-314)
Use of software with malware In @harrysforge/generate-media-queries
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/generate-media-queries
FLAT-3SLHJ (MAL-2022-316)
Use of software with malware In @harrysforge/icon
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/icon
FLAT-IYG3X (MAL-2022-313)
Use of software with malware In @harrysforge/gatsby-theme-experiment-manager
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/gatsby-theme-experiment-manager
FLAT-R0KTT (MAL-2022-315)
Use of software with malware In @harrysforge/grid
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/grid
FLAT-HUEJ1 (MAL-2022-312)
Use of software with malware In @harrysforge/gatsby-theme-cart
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/gatsby-theme-cart
FLAT-JZQWD (MAL-2022-311)
Use of software with malware In @harrysforge/gatsby-plugin-bugsnag
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/gatsby-plugin-bugsnag
FLAT-R09EO (MAL-2022-309)
Use of software with malware In @harrysforge/checkbox
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/checkbox
FLAT-S8AU2 (MAL-2022-308)
Use of software with malware In @harrysforge/button
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/button
FLAT-M2DW1 (MAL-2022-310)
Use of software with malware In @harrysforge/currency
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/currency
FLAT-GVFOE (MAL-2022-307)
Use of software with malware In @harrysforge/breadcrumbs
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/breadcrumbs
FLAT-8POV6 (MAL-2022-306)
Use of software with malware In @harrysforge/accordion
5.2
Medium
Ecosystem: Npm
Package: @harrysforge/accordion
FLAT-W30BY (MAL-2022-20)
Use of software with malware In 1forge-adapter
5.2
Medium
Ecosystem: Npm
Package: 1forge-adapter
FLAT-LPSHY (CVE-2019-7722)
XML injection (XXE) In net.sourceforge.pmd:pmd-core
7.2
High
Ecosystem: Maven
Package: net.sourceforge.pmd:pmd-core