Security Advisories
Browse security advisories and track which Dependabot PRs address them.
25,006
Total Advisories
1,832
With Dependabot PRs
3,531
Critical Severity
8,688
High Severity
ts-fns has prototype pollution vulnerability
GHSA-g7wq-wggw-vmhg CVE-2025-57351 MODERATE 3 months ago
A prototype pollution vulnerability exists in the ts-fns package versions prior to 13.0.7, where insufficient validation of user-provided keys in t...
npm
No PRs yet
web3-core-subscriptions has a Prototype Pollution vulnerability
GHSA-hhf6-3xpg-pggx CVE-2025-57330 LOW 3 months ago
The web3-core-subscriptions is a package designed to manages web3 subscriptions. A Prototype Pollution vulnerability in the attachToObject function...
npm
No PRs yet
web3-core-method is vulnerable to prototype pollution
GHSA-2j4c-9qqq-896r CVE-2025-57329 LOW 3 months ago
web3-core-method is a package designed to creates the methods on the web3 modules. A Prototype Pollution vulnerability in the attachToObject functi...
npm
No PRs yet
json-schema-editor-visual vulnerable to prototype pollution
GHSA-3c3p-xh4f-pfh7 CVE-2025-57320 MODERATE 3 months ago
json-schema-editor-visual is a package that provides jsonschema editor. A Prototype Pollution vulnerability in the setData and deleteData function ...
npm
No PRs yet
spmrc vulnerable to prototype pollution
GHSA-r2rv-8pp3-65xw CVE-2025-57327 LOW 3 months ago
spmrc is a package that provides the rc manager for spm. A Prototype Pollution vulnerability in the set and config function of spmrc version 1.2.0 ...
npm
No PRs yet
node-cube vulnerable to prototype pollution
GHSA-8v65-5fw5-23wj CVE-2025-57348 LOW 3 months ago
The node-cube package (prior to version 5.0.0) contains a vulnerability in its handling of prototype chain initialization, which could allow an att...
npm
No PRs yet
magix-combine-ex vulnerable to prototype pollution
GHSA-cr7h-93fh-whwm CVE-2025-57321 LOW 3 months ago
A Prototype Pollution vulnerability in the util-deps.addFileDepend function of magix-combine-ex versions through 2.2.2 allows attackers to inject p...
npm
No PRs yet
parse is vulnerable to prototype pollution
GHSA-9g8m-v378-pcg3 CVE-2025-57324 MODERATE 3 months ago
parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState funct...
npm
2
Dependabot PRs
50%
Merged
mpregular vulnerable to prototype pollution
GHSA-xx4g-r65p-3qf2 CVE-2025-57323 HIGH 3 months ago
mpregular is a package that provides a small program development framework based on RegularJS. A Prototype Pollution vulnerability in the mp.addEve...
npm
No PRs yet
sassdoc-extras vulnerable to prototype pollution
GHSA-3mpm-jx38-9m8w CVE-2025-57326 LOW 3 months ago
A Prototype Pollution vulnerability in the byGroupAndType function of sassdoc-extras v2.5.1 and before allows attackers to inject properties on Obj...
npm
No PRs yet
messageformat has a prototype pollution vulnerability
GHSA-xfqm-j7pc-xrfc CVE-2025-57349 LOW 3 months ago
The messageformat package, an implementation of the Unicode MessageFormat 2 specification for JavaScript, is vulnerable to prototype pollution due ...
npm
No PRs yet
Mastra Docs MCP Server `@mastra/mcp-docs-server` Leads to Information Exposure
GHSA-xh92-rqrq-227v CVE-2025-61685 MODERATE 3 months ago
The Mastra Docs MCP Server package `@mastra/mcp-docs-server` is a server designed to provide documentation context to AI agentic workflows, such as...
npm
No PRs yet
Command Injection in adb-mcp MCP Server
GHSA-54j7-grvr-9xwg CVE-2025-59834 CRITICAL 3 months ago
# Command Injection in adb-mcp MCP Server
The MCP Server at https://github.com/srmorete/adb-mcp is written in a way that is vulnerable to command ...
npm
No PRs yet
Claude Code Vulnerable to Arbitrary Code Execution via Plugin Autoloading with Specific Yarn Versions
GHSA-2jjv-qf24-vfm4 CVE-2025-59828 HIGH 3 months ago
### Summary
In Claude Code versions prior to **1.0.39**, when the tool is used with **Yarn 2.x or newer (Berry)**, Yarn plugins are automatically ...
npm
No PRs yet
tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball
GHSA-vj76-c3g6-qr5v CVE-2025-59343 HIGH 3 months ago
### Impact
v3.1.0, v2.1.3, v1.16.5 and below
### Patches
Has been patched in 3.1.1, 2.1.4, and 1.16.6
### Workarounds
You can use the ignore opt...
npm
1
Dependabot PRs
counterpart vulnerable to prototype pollution
GHSA-2488-w585-72ch CVE-2025-57354 MODERATE 3 months ago
A vulnerability exists in the `counterpart` library for Node.js and the browser due to insufficient sanitization of user-controlled input in transl...
npm
No PRs yet
CSVTOJSON has a prototype pollution vulnerability
GHSA-vrw9-g62v-7fmf CVE-2025-57350 MODERATE 3 months ago
The csvtojson package, a tool for converting CSV data to JSON with customizable parsing capabilities, contains a prototype pollution vulnerability ...
npm
5
Dependabot PRs
min-document vulnerable to prototype pollution
GHSA-rx8g-88g5-qh64 CVE-2025-57352 LOW 3 months ago
A vulnerability exists in the 'min-document' package prior to version 2.19.1, stemming from improper handling of namespace operations in the remove...
npm
No PRs yet
messageformat prototype pollution vulnerability
GHSA-6xv4-9cqp-92rh CVE-2025-57353 MODERATE 3 months ago
The Runtime components of messageformat package for Node.js version 3.0.1 contain a prototype pollution vulnerability. Due to insufficient validati...
npm
16
Dependabot PRs
Mesh Connect JS SDK Vulnerable to Cross Site Scripting via createLink.openLink
GHSA-vh3f-qppr-j97f CVE-2025-59430 HIGH 3 months ago
### Summary
The lack of sanitization of URLs protocols in the `createLink.openLink` function enables the execution of arbitrary JavaScript code wit...
npm
No PRs yet
Mailgen: HTML injection vulnerability in plaintext e-mails
GHSA-j2xj-h7w5-r7vp CVE-2025-59526 MODERATE 3 months ago
# HTML Injection and XSS Filter Bypass in Plaintext Emails
### Summary
An HTML injection vulnerability in plaintext emails generated by Mailgen ha...
npm
No PRs yet
`git-comiters` Command Injection vulnerability
GHSA-g38c-wxjf-xrh6 CVE-2025-59831 HIGH 3 months ago
## Background on the vulnerability
This vulnerability manifests with the library's primary exported API: `gitCommiters(options, callback)`
which a...
npm
No PRs yet
@conventional-changelog/git-client has Argument Injection vulnerability
GHSA-vh25-5764-9wcr CVE-2025-59433 MODERATE 3 months ago
## Background on exploitation
This vulnerability manifests with the library's `getTags()` API,
which allows specifying extra parameters passed to ...
npm
17
Dependabot PRs
Codex has sandbox bypass due to bug in path configuration logic
GHSA-w5fx-fh39-j5rw CVE-2025-59532 HIGH 3 months ago
Due to a bug in the sandbox configuration logic, Codex CLI could treat a model-generated `cwd` as the sandbox’s writable root, including paths outs...
npm
No PRs yet
@digitalocean/do-markdownit has Type Confusion vulnerability
GHSA-2h8j-8r9p-849f CVE-2025-59717 MODERATE 3 months ago
### Overview
A type confusion issue exists in the `@digitalocean/do-markdownit` package. In the `callout` and `fence_environment` plugins, the `all...
npm
No PRs yet
Lobe Chat Desktop vulnerable to Remote Code Execution via XSS in Chat Messages
GHSA-m79r-r765-5f9j CVE-2025-59417 MODERATE 3 months ago
### Summary
We identified a cross-site scripting (XSS) vulnerability when handling chat message in lobe-chat that can be escalated to remote code ...
npm
No PRs yet
@sequa-ai/sequa-mcp has Command Injection vulnerability
GHSA-9pw5-wx67-q964 CVE-2025-10619 MODERATE 3 months ago
A vulnerability was detected in sequa-ai sequa-mcp up to 1.0.13. This affects the function redirectToAuthorization of the file src/helpers/node-oau...
npm
No PRs yet
Parcel has an Origin Validation Error vulnerability
GHSA-qm9p-f9j5-w83w CVE-2025-56648 MODERATE 3 months ago
parcel versions 1.6.1 and above have an Origin Validation Error vulnerability. Malicious websites can send XMLHTTPRequests to the application's dev...
npm
No PRs yet
Nuxt has Client-Side Path Traversal in Nuxt Island Payload Revival
GHSA-p6jq-8vc4-79f6 CVE-2025-59414 LOW 3 months ago
### Summary
A client-side path traversal vulnerability in Nuxt's Island payload revival mechanism allowed attackers to manipulate client-side requ...
npm
No PRs yet
matrix-js-sdk has insufficient validation when considering a room to be upgraded by another
GHSA-mp7c-m3rh-r56v CVE-2025-59160 MODERATE 3 months ago
### Impact
matrix-js-sdk before 38.2.0 has insufficient validation of room predecessor links in `MatrixClient::getJoinedRooms`, allowing a remote a...
npm
No PRs yet
@executeautomation/database-server does not properly restrict access, bypassing a "read-only" mode
GHSA-65hm-pwj5-73pw CVE-2025-59333 HIGH 3 months ago
The MCP Server provided by ExecuteAutomation at https://github.com/executeautomation/mcp-database-server provides an MCP interface for agentic work...
npm
No PRs yet
is-arrayish@0.3.3 contains malware after npm account takeover
GHSA-frh7-2f84-v9mw CVE-2025-59331 HIGH 3 months ago
### Impact
On 8 September 2025, an npm publishing account for `is-arrayish` was taken over after a phishing attack. Version `0.3.3` was published, ...
npm
No PRs yet
error-ex@1.3.3 contains malware after npm account takeover
GHSA-6jp5-hh4c-8c5h CVE-2025-59330 HIGH 3 months ago
### Impact
On 8 September 2025, an npm publishing account for `error-ex` was taken over after a phishing attack. Version `1.3.3` was published, fun...
npm
No PRs yet
color-convert@3.1.1 contains malware after npm account takeover
GHSA-pxx3-g568-hxr4 CVE-2025-59162 HIGH 3 months ago
### Impact
On 8 September 2025, the npm publishing account for `color-convert` was taken over after a phishing attack. Version `3.1.1` was publishe...
npm
No PRs yet
color-name@2.0.1 contains malware after npm account takeover
GHSA-5fvm-p68v-5wmh CVE-2025-59145 HIGH 3 months ago
### Impact
On 8 September 2025, an npm publishing account for `color-name` was taken over after a phishing attack. Version `2.0.1` was published, f...
npm
No PRs yet
debug@4.4.2 contains malware after npm account takeover
GHSA-4x49-vf9v-38px CVE-2025-59144 HIGH 3 months ago
### Impact
On 8 September 2025, the npm publishing account for `debug` was taken over after a phishing attack. Version `4.4.2` was published, funct...
npm
No PRs yet
color@5.0.1 contains malware after npm account takeover
GHSA-qrmh-qg46-72pp CVE-2025-59143 HIGH 3 months ago
### Impact
On 8 September 2025, the npm publishing account for `color` was taken over after a phishing attack. Version `5.0.1` was published, funct...
npm
No PRs yet
color-string@2.1.1 contains malware after npm account takeover
GHSA-286p-vc9p-p5qv CVE-2025-59142 HIGH 3 months ago
### Impact
On 8 September 2025, the npm publishing account for `color-string` was taken over after a phishing attack. Version `2.1.1` was published...
npm
No PRs yet
simple-swizzle@0.2.3 contains malware after npm account takeover
GHSA-9g9j-rggx-7fmg CVE-2025-59141 HIGH 3 months ago
### Impact
On 8 September 2025, the npm publishing account for `simple-swizzle` was taken over after a phishing attack. Version `0.2.3` was publish...
npm
No PRs yet
backslash@0.2.1 contains malware after npm account takeover
GHSA-53mq-f4w3-f7qv CVE-2025-59140 HIGH 3 months ago
### Impact
On 8 September 2025, the npm publishing account for `backslash` was taken over after a phishing attack. Version `0.2.1` was published, f...
npm
No PRs yet
HackMD MCP Server has Server-Side Request Forgery (SSRF) vulnerability
GHSA-g5cg-6c7v-mmpw CVE-2025-59155 MODERATE 3 months ago
### Impact
A Server-Side Request Forgery (SSRF) vulnerability that affects all users running the HackMD MCP server in HTTP mode. Attackers could e...
npm
No PRs yet
Ghost vulnerable to Server Side Request Forgery (SSRF) via oEmbed Bookmark
GHSA-f7qg-xj45-w956 CVE-2025-9862 MODERATE 3 months ago
### Impact
A vulnerability in Ghost's oEmbed mechanism allows staff users to exfiltrate data from internal systems via SSRF.
### Vulnerable versi...
npm
No PRs yet
Flowise has unsandboxed remote code execution via Custom MCP
GHSA-6933-jpx5-q87q HIGH 3 months ago
### Summary
The Custom MCPs feature is designed to execute OS commands, for instance, using tools like `npx` to spin up local MCP Servers. However,...
npm
No PRs yet
Flowise has arbitrary file access due to missing chat flow id validation
GHSA-q67q-549q-p849 CRITICAL 3 months ago
### Summary
Missing chat flow id validation allows an attacker to access arbitrary file.
### Details
Commit https://github.com/FlowiseAI/Flowise...
npm
No PRs yet
Flowise has an Arbitrary File Read
GHSA-99pg-hqvx-r4gf CRITICAL 3 months ago
### Summary
An arbitrary file read vulnerability in the `chatId` parameter supplied to both the `/api/v1/get-upload-file` and `/api/v1/openai-assis...
npm
No PRs yet
Flowise has Remote Code Execution vulnerability
GHSA-3gcm-f6qx-ff7p CVE-2025-59528 CRITICAL 3 months ago
## Description
### Cause of the Vulnerability
The `CustomMCP` node allows users to input configuration settings for connecting to an external MCP...
npm
No PRs yet
FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
GHSA-hr92-4q35-4j3m CVE-2025-59527 HIGH 3 months ago
### Summary
---
A Server-Side Request Forgery (SSRF) vulnerability was discovered in the `/api/v1/fetch-links` endpoint of the Flowise application...
npm
No PRs yet
FlowiseAI Pre-Auth Arbitrary Code Execution
GHSA-7944-7c6r-55vv CVE-2025-57164 CRITICAL 3 months ago
## Summary
An authenticated admin user of **FlowiseAI** can exploit the **Supabase RPC Filter** component to execute **arbitrary server-side code*...
npm
No PRs yet
Stored XSS in n8n LangChain Chat Trigger Node via initialMessages Parameter
GHSA-mvh4-2cm2-6hpg CVE-2025-58177 MODERATE 3 months ago
### Impact
A stored Cross-Site Scripting (XSS) vulnerability was identified in the `@n8n/n8n-nodes-langchain.chatTrigger` node in n8n. If an author...
npm
No PRs yet
MetaMask SDK indirectly exposed via malicious debug@4.4.2 dependency
GHSA-qj3p-xc97-xw74 MODERATE 3 months ago
### Who is affected?
This advisory only applies to developers who use MetaMask SDK in the browser and who, on Sept 8th 2025 between 13:00–15:30 UTC...
npm
1
Dependabot PRs