FLAT-CB83B (CVE-2026-48527)
Server side cross-site scripting In @haxtheweb/haxcms-nodejs
5.6
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-T09HY (CVE-2026-46357)
Asymmetric denial of service In @haxtheweb/haxcms-nodejs
5.7
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-B76VJ (CVE-2026-46511)
Reflected cross-site scripting (XSS) In @haxtheweb/haxcms-nodejs
6.3
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-9Q31O (CVE-2026-46395)
Insecure encryption algorithm In @haxtheweb/haxcms-nodejs
8.1
High
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-0P7EF (CVE-2026-46496)
Server side cross-site scripting In @haxtheweb/haxcms-nodejs
1.2
Low
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-TXCUK (CVE-2026-46393)
Server-side request forgery (SSRF) In @haxtheweb/haxcms-nodejs
4.9
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-B3MM0 (CVE-2021-22883)
Asymmetric denial of service In nodejs
6.6
Medium
Ecosystem: Alpm
Package: nodejs
FLAT-WRWZJ (CVE-2021-22884)
Lack of data validation In nodejs
5.2
Medium
Ecosystem: Alpm
Package: nodejs
FLAT-176YW (CVE-2021-22959)
HTTP request smuggling In nodejs
2.7
Low
Ecosystem: Alpm
Package: nodejs
FLAT-VFZA6 (CVE-2021-22960)
HTTP request smuggling In nodejs
2.7
Low
Ecosystem: Alpm
Package: nodejs
FLAT-UV4J2 (CVE-2020-8265)
Out-of-bounds read In nodejs
7.2
High
Ecosystem: Alpm
Package: nodejs
FLAT-0RMFC (CVE-2020-8287)
HTTP request smuggling In nodejs
2.7
Low
Ecosystem: Alpm
Package: nodejs
FLAT-YBUJH (CVE-2021-23362)
Asymmetric denial of service In nodejs
2.7
Low
Ecosystem: Alpm
Package: nodejs
FLAT-JSQQY (CVE-2021-27290)
Asymmetric denial of service In nodejs
4.6
Medium
Ecosystem: Alpm
Package: nodejs
FLAT-HKTWC (CVE-2021-22930)
Out-of-bounds read In nodejs
8.1
High
Ecosystem: Alpm
Package: nodejs
FLAT-IRAC2 (CVE-2021-22939)
Insecure digital certificates In nodejs
2.7
Low
Ecosystem: Alpm
Package: nodejs
FLAT-L03A8 (CVE-2021-22940)
Out-of-bounds read In nodejs
6.6
Medium
Ecosystem: Alpm
Package: nodejs
FLAT-5SHH6 (CVE-2024-27982)
HTTP request smuggling In nodejs-lts-iron
1.7
Low
Ecosystem: Alpm
Package: nodejs-lts-iron
FLAT-WUKQH (CVE-2024-27983)
Asymmetric denial of service In nodejs-lts-iron
6.6
Medium
Ecosystem: Alpm
Package: nodejs-lts-iron
FLAT-320SE (CVE-2025-23166)
Asymmetric denial of service In nodejs
0.6
Low
Ecosystem: Alpm
Package: nodejs
FLAT-8D94J (CVE-2025-23165)
Improper resource allocation In nodejs-lts-jod
2.7
Low
Ecosystem: Alpm
Package: nodejs-lts-jod
FLAT-5QPRB (CVE-2025-23167)
HTTP request smuggling In nodejs-lts-iron
2.7
Low
Ecosystem: Alpm
Package: nodejs-lts-iron
FLAT-ZEYL0 (CVE-2026-21717)
Insecure encryption algorithm In nodejs
6.3
Medium
Ecosystem: Debian
Package: nodejs
FLAT-95169 (CVE-2026-21713)
Lack of data validation - Path Traversal In nodejs
2.5
Low
Ecosystem: Debian
Package: nodejs
FLAT-PGYMK (CVE-2026-21714)
Improper resource allocation In nodejs
7.7
High
Ecosystem: Debian
Package: nodejs
FLAT-B4W5I (CVE-2026-21715)
Improper authorization control for web services In nodejs
0.4
Low
Ecosystem: Alpine
Package: nodejs
FLAT-0GG0U (CVE-2026-21716)
Improper authorization control for web services In nodejs
3.6
Low
Ecosystem: Alpine
Package: nodejs
FLAT-1ATTA (CVE-2026-21710)
Lack of data validation - Type confusion In nodejs
6.3
Medium
Ecosystem: Alpine
Package: nodejs
FLAT-3WRL6 (CVE-2026-21712)
Inappropriate coding practices In nodejs
7.7
High
Ecosystem: Alpine
Package: nodejs
FLAT-83CLM (CVE-2026-21711)
Improper authorization control for web services In nodejs24
1.1
Low
Ecosystem: RPM
Package: nodejs24
FLAT-2NE29 (DSA-6183-1)
Non-upgradable dependencies In nodejs
0.6
Low
Ecosystem: Debian
Package: nodejs
FLAT-NP5YV (CVE-2026-33872)
Race condition In nodejs
4.9
Medium
Ecosystem: Hex
Package: nodejs
FLAT-ZGRFR (MAL-2026-2365)
Use of software with malware In env-nodejs
5.2
Medium
Ecosystem: Npm
Package: env-nodejs
FLAT-THV31 (MAL-2026-1715)
Use of software with malware In dotenv-nodejs
5.2
Medium
Ecosystem: Npm
Package: dotenv-nodejs
FLAT-KB654 (DSA-6166-1)
Non-upgradable dependencies In nodejs
0.6
Low
Ecosystem: Debian
Package: nodejs
FLAT-XWMVV (MAL-2026-406)
Use of software with malware In aws-crt-nodejs
5.2
Medium
Ecosystem: Npm
Package: aws-crt-nodejs
FLAT-NIC8W (CVE-2026-21637)
Asymmetric denial of service In nodejs
6.3
Medium
Ecosystem: Alpine
Package: nodejs
FLAT-ZK9KZ (CVE-2025-59465)
Asymmetric denial of service - ReDoS In nodejs
6.3
Medium
Ecosystem: Alpine
Package: nodejs
FLAT-OO70F (CVE-2025-59466)
Improper resource allocation In nodejs
6.3
Medium
Ecosystem: Alpine
Package: nodejs
FLAT-X9W0T (CVE-2025-55131)
Inappropriate coding practices In nodejs
0.6
Low
Ecosystem: Alpine
Package: nodejs
FLAT-P2FAE (CVE-2025-55130)
Lack of data validation - Path Traversal In nodejs
5.8
Medium
Ecosystem: Alpine
Package: nodejs
FLAT-L42S6 (CVE-2025-55132)
Excessive privileges In nodejs
1.1
Low
Ecosystem: Alpine
Package: nodejs
FLAT-WL573 (CVE-2025-59464)
Improper resource allocation In nodejs
6.5
Medium
Ecosystem: RPM
Package: nodejs
FLAT-L8RWA (CVE-2026-22704)
Server side cross-site scripting In @haxtheweb/haxcms-nodejs
5.8
Medium
Ecosystem: Npm
Package: @haxtheweb/haxcms-nodejs
FLAT-LWRW4 (MAL-2025-191579)
Use of software with malware In lbank-connector-nodejs
5.2
Medium
Ecosystem: Npm
Package: lbank-connector-nodejs
FLAT-OICAO (MAL-2025-191564)
Use of software with malware In aps-simple-viewer-nodejs
5.2
Medium
Ecosystem: Npm
Package: aps-simple-viewer-nodejs
FLAT-8SUGQ (MAL-2025-190718)
Use of software with malware In @asyncapi/nodejs-template
5.2
Medium
Ecosystem: Npm
Package: @asyncapi/nodejs-template
FLAT-138X9 (MAL-2025-190719)
Use of software with malware In @asyncapi/nodejs-ws-template
5.2
Medium
Ecosystem: Npm
Package: @asyncapi/nodejs-ws-template
FLAT-9T63N (GHSA-8wj8-cfxr-9374)
Remote command execution In aws-advanced-nodejs-wrapper
7.7
High
Ecosystem: Npm
Package: aws-advanced-nodejs-wrapper
FLAT-0ADAL (MAL-2025-188325)
Use of software with malware In nodejs-csrf-sagitta-materialize
5.2
Medium
Ecosystem: Npm
Package: nodejs-csrf-sagitta-materialize
FLAT-HZYJF (MAL-2025-185370)
Use of software with malware In acamar-child-process-oauth-nodejs
5.2
Medium
Ecosystem: Npm
Package: acamar-child-process-oauth-nodejs
FLAT-AQI41 (MAL-2025-186042)
Use of software with malware In celeste-baryon-stop-nodejs
5.2
Medium
Ecosystem: Npm
Package: celeste-baryon-stop-nodejs
FLAT-0RL2C (MAL-2025-185795)
Use of software with malware In betelgeuse-nodejs-hugo-flare
5.2
Medium
Ecosystem: Npm
Package: betelgeuse-nodejs-hugo-flare
FLAT-D516J (MAL-2025-186569)
Use of software with malware In despina-photon-nodejs-on
5.2
Medium
Ecosystem: Npm
Package: despina-photon-nodejs-on
FLAT-DQ4QV (MAL-2025-190103)
Use of software with malware In ursa-auth0-delphinus-nodejs
5.2
Medium
Ecosystem: Npm
Package: ursa-auth0-delphinus-nodejs
FLAT-GUCRP (MAL-2025-185426)
Use of software with malware In algol-aldebaran-cressida-nodejs
5.2
Medium
Ecosystem: Npm
Package: algol-aldebaran-cressida-nodejs
FLAT-1JZQ3 (MAL-2025-188326)
Use of software with malware In nodejs-hyperion-quito-start
5.2
Medium
Ecosystem: Npm
Package: nodejs-hyperion-quito-start
FLAT-8LYFY (MAL-2025-187477)
Use of software with malware In init-optimize-css-assets-webpack-plugin-nodejs-grus
5.2
Medium
Ecosystem: Npm
Package: init-optimize-css-assets-webpack-plugin-nodejs-grus
FLAT-Y7YCE (MAL-2025-188164)
Use of software with malware In mysql-quasar-nodejs-node-sass
5.2
Medium
Ecosystem: Npm
Package: mysql-quasar-nodejs-node-sass
FLAT-J2U0Y (MAL-2025-188324)
Use of software with malware In nodejs-cosmicweb-chakra-ui-vortex
5.2
Medium
Ecosystem: Npm
Package: nodejs-cosmicweb-chakra-ui-vortex
FLAT-WSYNS (MAL-2025-188512)
Use of software with malware In paleoclimatology-jsonp-troposphere-nodejs
5.2
Medium
Ecosystem: Npm
Package: paleoclimatology-jsonp-troposphere-nodejs
FLAT-YN83K (MAL-2025-190444)
Use of software with malware In zenith-algol-nodejs-pegasus
5.2
Medium
Ecosystem: Npm
Package: zenith-algol-nodejs-pegasus
FLAT-V7BC5 (MAL-2025-188330)
Use of software with malware In nodejs-sublimation-blueshift-ganymede
5.2
Medium
Ecosystem: Npm
Package: nodejs-sublimation-blueshift-ganymede
FLAT-G8SL8 (MAL-2025-189739)
Use of software with malware In superagent-nodejs-darkenergy-fermiparadox
5.2
Medium
Ecosystem: Npm
Package: superagent-nodejs-darkenergy-fermiparadox
FLAT-VHS7L (MAL-2025-187767)
Use of software with malware In levels-event-bionics-nodejs
5.2
Medium
Ecosystem: Npm
Package: levels-event-bionics-nodejs
FLAT-378MI (MAL-2025-188329)
Use of software with malware In nodejs-sass-loader-carina-duplex
5.2
Medium
Ecosystem: Npm
Package: nodejs-sass-loader-carina-duplex
FLAT-IU1Y2 (MAL-2025-185505)
Use of software with malware In apollo-nodejs-helmet-loglevel
5.2
Medium
Ecosystem: Npm
Package: apollo-nodejs-helmet-loglevel
FLAT-JDAHL (MAL-2025-187646)
Use of software with malware In jwt-jwt-nodejs-publish
5.2
Medium
Ecosystem: Npm
Package: jwt-jwt-nodejs-publish
FLAT-W54UV (MAL-2025-186716)
Use of software with malware In element-ui-nodejs-bellatrix-hapi
5.2
Medium
Ecosystem: Npm
Package: element-ui-nodejs-bellatrix-hapi
FLAT-2YI9U (MAL-2025-186252)
Use of software with malware In commitlint-config-angular-nodejs-carpo-vortex
5.2
Medium
Ecosystem: Npm
Package: commitlint-config-angular-nodejs-carpo-vortex
FLAT-PA04J (MAL-2025-186648)
Use of software with malware In duplex-parcel-nodejs-membrane
5.2
Medium
Ecosystem: Npm
Package: duplex-parcel-nodejs-membrane
FLAT-N2NHU (MAL-2025-185457)
Use of software with malware In andromeda-webpack-nodejs-sadr
5.2
Medium
Ecosystem: Npm
Package: andromeda-webpack-nodejs-sadr
FLAT-5ZVLU (MAL-2025-187752)
Use of software with malware In less-geckodriver-mongodb-nodejs
5.2
Medium
Ecosystem: Npm
Package: less-geckodriver-mongodb-nodejs
FLAT-MUUUL (MAL-2025-188248)
Use of software with malware In neutronstar-bootstrap-nodejs-paleomagnetism
5.2
Medium
Ecosystem: Npm
Package: neutronstar-bootstrap-nodejs-paleomagnetism
FLAT-BVYQJ (MAL-2025-190288)
Use of software with malware In webpack-dotenv-safe-avior-nodejs
5.2
Medium
Ecosystem: Npm
Package: webpack-dotenv-safe-avior-nodejs
FLAT-0WKXP (MAL-2025-188328)
Use of software with malware In nodejs-radioastronomy-tailwindcss-chalk
5.2
Medium
Ecosystem: Npm
Package: nodejs-radioastronomy-tailwindcss-chalk
FLAT-DQWDN (MAL-2025-188327)
Use of software with malware In nodejs-oberon-ignite-node-sass
5.2
Medium
Ecosystem: Npm
Package: nodejs-oberon-ignite-node-sass
FLAT-MJ1N7 (MAL-2025-186942)
Use of software with malware In farout-quark-joviology-nodejs
5.2
Medium
Ecosystem: Npm
Package: farout-quark-joviology-nodejs
FLAT-4QKKF (MAL-2025-145046)
Use of software with malware In miranda-ora-module-nodejs
5.2
Medium
Ecosystem: Npm
Package: miranda-ora-module-nodejs
FLAT-HVXUG (MAL-2025-145400)
Use of software with malware In nestjs-nodejs-electron-builder-auth
5.2
Medium
Ecosystem: Npm
Package: nestjs-nodejs-electron-builder-auth
FLAT-4NEFK (MAL-2025-143133)
Use of software with malware In halley-cosmiconfig-nodejs-ganymede
5.2
Medium
Ecosystem: Npm
Package: halley-cosmiconfig-nodejs-ganymede
FLAT-BV05Q (MAL-2025-145694)
Use of software with malware In nuxtjs-apollo-gulp-nodejs
5.2
Medium
Ecosystem: Npm
Package: nuxtjs-apollo-gulp-nodejs
FLAT-HZPM3 (MAL-2025-149870)
Use of software with malware In zenobia-nodejs-sass-loader-phoenix
5.2
Medium
Ecosystem: Npm
Package: zenobia-nodejs-sass-loader-phoenix
FLAT-DO0T3 (MAL-2025-149592)
Use of software with malware In xanadu-comet-nodejs-fornax
5.2
Medium
Ecosystem: Npm
Package: xanadu-comet-nodejs-fornax
FLAT-0CY0M (MAL-2025-147963)
Use of software with malware In sirius-nodejs-pino-chalk
5.2
Medium
Ecosystem: Npm
Package: sirius-nodejs-pino-chalk
FLAT-HH8KF (MAL-2025-144257)
Use of software with malware In leda-async-nodejs-izar
5.2
Medium
Ecosystem: Npm
Package: leda-async-nodejs-izar
FLAT-4CQYR (MAL-2025-145560)
Use of software with malware In nodejs-cygnus-sync-markdown-pdf
5.2
Medium
Ecosystem: Npm
Package: nodejs-cygnus-sync-markdown-pdf
FLAT-4APOD (MAL-2025-145563)
Use of software with malware In nodejs-eris-izar-semantic-release
5.2
Medium
Ecosystem: Npm
Package: nodejs-eris-izar-semantic-release
FLAT-0B8KY (MAL-2025-145438)
Use of software with malware In nightmare-indus-nodejs-xenos
5.2
Medium
Ecosystem: Npm
Package: nightmare-indus-nodejs-xenos
FLAT-429I3 (MAL-2025-140417)
Use of software with malware In carina-nodejs-spectron-webdriver-regulus
5.2
Medium
Ecosystem: Npm
Package: carina-nodejs-spectron-webdriver-regulus
FLAT-40C37 (MAL-2025-140426)
Use of software with malware In carina-transport-nodejs-sirius
5.2
Medium
Ecosystem: Npm
Package: carina-transport-nodejs-sirius
FLAT-8NZWA (MAL-2025-144959)
Use of software with malware In middleware-jwt-nodejs-less
5.2
Medium
Ecosystem: Npm
Package: middleware-jwt-nodejs-less
FLAT-3YGBT (MAL-2025-149295)
Use of software with malware In wasat-mui-sadr-nodejs
5.2
Medium
Ecosystem: Npm
Package: wasat-mui-sadr-nodejs
FLAT-3WKSR (MAL-2025-149030)
Use of software with malware In upgrade-selenium-nodejs-lyra
5.2
Medium
Ecosystem: Npm
Package: upgrade-selenium-nodejs-lyra
FLAT-9EFIN (MAL-2025-145566)
Use of software with malware In nodejs-grus-gacrux-auriga
5.2
Medium
Ecosystem: Npm
Package: nodejs-grus-gacrux-auriga
FLAT-073HF (MAL-2025-146262)
Use of software with malware In pipe-dynamo-nodejs-stream
5.2
Medium
Ecosystem: Npm
Package: pipe-dynamo-nodejs-stream
FLAT-B1K3E (MAL-2025-139314)
Use of software with malware In algol-weywot-loopback-nodejs
5.2
Medium
Ecosystem: Npm
Package: algol-weywot-loopback-nodejs
FLAT-H5Y27 (MAL-2025-147702)
Use of software with malware In scorpius-betelgeuse-repository-nodejs
5.2
Medium
Ecosystem: Npm
Package: scorpius-betelgeuse-repository-nodejs
FLAT-IAWQL (MAL-2025-147222)
Use of software with malware In release-it-eslint-nodejs-titan
5.2
Medium
Ecosystem: Npm
Package: release-it-eslint-nodejs-titan
FLAT-JZSNT (MAL-2025-139541)
Use of software with malware In aquarius-nodejs-electron-registry
5.2
Medium
Ecosystem: Npm
Package: aquarius-nodejs-electron-registry