Security Advisories
Browse security advisories and track which Dependabot PRs address them.
24,785
Total Advisories
1,792
With Dependabot PRs
3,506
Critical Severity
8,617
High Severity
is-arrayish@0.3.3 contains malware after npm account takeover
GHSA-frh7-2f84-v9mw CVE-2025-59331 HIGH 2 months ago
### Impact
On 8 September 2025, an npm publishing account for `is-arrayish` was taken over after a phishing attack. Version `0.3.3` was published, ...
npm
No PRs yet
error-ex@1.3.3 contains malware after npm account takeover
GHSA-6jp5-hh4c-8c5h CVE-2025-59330 HIGH 2 months ago
### Impact
On 8 September 2025, an npm publishing account for `error-ex` was taken over after a phishing attack. Version `1.3.3` was published, fun...
npm
No PRs yet
color-convert@3.1.1 contains malware after npm account takeover
GHSA-pxx3-g568-hxr4 CVE-2025-59162 HIGH 2 months ago
### Impact
On 8 September 2025, the npm publishing account for `color-convert` was taken over after a phishing attack. Version `3.1.1` was publishe...
npm
No PRs yet
color-name@2.0.1 contains malware after npm account takeover
GHSA-5fvm-p68v-5wmh CVE-2025-59145 HIGH 2 months ago
### Impact
On 8 September 2025, an npm publishing account for `color-name` was taken over after a phishing attack. Version `2.0.1` was published, f...
npm
No PRs yet
debug@4.4.2 contains malware after npm account takeover
GHSA-4x49-vf9v-38px CVE-2025-59144 HIGH 2 months ago
### Impact
On 8 September 2025, the npm publishing account for `debug` was taken over after a phishing attack. Version `4.4.2` was published, funct...
npm
No PRs yet
color@5.0.1 contains malware after npm account takeover
GHSA-qrmh-qg46-72pp CVE-2025-59143 HIGH 2 months ago
### Impact
On 8 September 2025, the npm publishing account for `color` was taken over after a phishing attack. Version `5.0.1` was published, funct...
npm
No PRs yet
color-string@2.1.1 contains malware after npm account takeover
GHSA-286p-vc9p-p5qv CVE-2025-59142 HIGH 2 months ago
### Impact
On 8 September 2025, the npm publishing account for `color-string` was taken over after a phishing attack. Version `2.1.1` was published...
npm
No PRs yet
simple-swizzle@0.2.3 contains malware after npm account takeover
GHSA-9g9j-rggx-7fmg CVE-2025-59141 HIGH 2 months ago
### Impact
On 8 September 2025, the npm publishing account for `simple-swizzle` was taken over after a phishing attack. Version `0.2.3` was publish...
npm
No PRs yet
backslash@0.2.1 contains malware after npm account takeover
GHSA-53mq-f4w3-f7qv CVE-2025-59140 HIGH 2 months ago
### Impact
On 8 September 2025, the npm publishing account for `backslash` was taken over after a phishing attack. Version `0.2.1` was published, f...
npm
No PRs yet
HackMD MCP Server has Server-Side Request Forgery (SSRF) vulnerability
GHSA-g5cg-6c7v-mmpw CVE-2025-59155 MODERATE 2 months ago
### Impact
A Server-Side Request Forgery (SSRF) vulnerability that affects all users running the HackMD MCP server in HTTP mode. Attackers could e...
npm
No PRs yet
Ghost vulnerable to Server Side Request Forgery (SSRF) via oEmbed Bookmark
GHSA-f7qg-xj45-w956 CVE-2025-9862 MODERATE 2 months ago
### Impact
A vulnerability in Ghost's oEmbed mechanism allows staff users to exfiltrate data from internal systems via SSRF.
### Vulnerable versi...
npm
No PRs yet
Flowise has unsandboxed remote code execution via Custom MCP
GHSA-6933-jpx5-q87q HIGH 2 months ago
### Summary
The Custom MCPs feature is designed to execute OS commands, for instance, using tools like `npx` to spin up local MCP Servers. However,...
npm
No PRs yet
Flowise has arbitrary file access due to missing chat flow id validation
GHSA-q67q-549q-p849 CRITICAL 2 months ago
### Summary
Missing chat flow id validation allows an attacker to access arbitrary file.
### Details
Commit https://github.com/FlowiseAI/Flowise...
npm
No PRs yet
Flowise has an Arbitrary File Read
GHSA-99pg-hqvx-r4gf CRITICAL 2 months ago
### Summary
An arbitrary file read vulnerability in the `chatId` parameter supplied to both the `/api/v1/get-upload-file` and `/api/v1/openai-assis...
npm
No PRs yet
Flowise has Remote Code Execution vulnerability
GHSA-3gcm-f6qx-ff7p CVE-2025-59528 CRITICAL 2 months ago
## Description
### Cause of the Vulnerability
The `CustomMCP` node allows users to input configuration settings for connecting to an external MCP...
npm
No PRs yet
FlowiseAI/Flowise has Server-Side Request Forgery (SSRF) vulnerability
GHSA-hr92-4q35-4j3m CVE-2025-59527 HIGH 2 months ago
### Summary
---
A Server-Side Request Forgery (SSRF) vulnerability was discovered in the `/api/v1/fetch-links` endpoint of the Flowise application...
npm
No PRs yet
FlowiseAI Pre-Auth Arbitrary Code Execution
GHSA-7944-7c6r-55vv CVE-2025-57164 CRITICAL 2 months ago
## Summary
An authenticated admin user of **FlowiseAI** can exploit the **Supabase RPC Filter** component to execute **arbitrary server-side code*...
npm
No PRs yet
Stored XSS in n8n LangChain Chat Trigger Node via initialMessages Parameter
GHSA-mvh4-2cm2-6hpg CVE-2025-58177 MODERATE 2 months ago
### Impact
A stored Cross-Site Scripting (XSS) vulnerability was identified in the `@n8n/n8n-nodes-langchain.chatTrigger` node in n8n. If an author...
npm
No PRs yet
MetaMask SDK indirectly exposed via malicious debug@4.4.2 dependency
GHSA-qj3p-xc97-xw74 MODERATE 2 months ago
### Who is affected?
This advisory only applies to developers who use MetaMask SDK in the browser and who, on Sept 8th 2025 between 13:00–15:30 UTC...
npm
1
Dependabot PRs
Hono has Body Limit Middleware Bypass
GHSA-92vj-g62v-jqhh CVE-2025-59139 MODERATE 3 months ago
### Summary
A flaw in the `bodyLimit` middleware could allow bypassing the configured request body size limit when conflicting HTTP headers were pr...
npm
2
Dependabot PRs
Flowise Cloud and Local Deployments have Unauthenticated Password Reset Token Disclosure that Leads to Account Takeover
GHSA-wgpv-6j63-x5ph CVE-2025-58434 CRITICAL 3 months ago
### Summary
The `forgot-password` endpoint in Flowise returns sensitive information including a valid password reset `tempToken` without authentic...
npm
No PRs yet
Axios is vulnerable to DoS attack through lack of data size check
GHSA-4hjh-wcwx-xvwj CVE-2025-58754 HIGH 3 months ago
## Summary
When Axios runs on Node.js and is given a URL with the `data:` scheme, it does not perform HTTP. Instead, its Node http adapter decodes...
npm
3
Dependabot PRs
Prebid-universal-creative latest on npm briefly compromised
GHSA-m662-56rj-8fmm CVE-2025-59039 CRITICAL 3 months ago
### Impact
Npm users of PUC 1.17.3 or PUC latest were briefly affected by crypto-related malware detailed in the blog post below. This includes the...
npm
No PRs yet
Prebid.js NPM package briefly compromised
GHSA-jwq7-6j4r-2f92 CVE-2025-59038 HIGH 3 months ago
### Impact
NPM users of prebid 10.9.2. The malicious code attempts to redirect crypto transactions on the site to the attackers' wallet.
### Patch...
npm
No PRs yet
jsondiffpatch is vulnerable to Cross-site Scripting (XSS) via HtmlFormatter::nodeBegin
GHSA-33vc-wfww-vjfv CVE-2025-9910 MODERATE 3 months ago
### Vulnerability in jsondiffpatch
Versions of `jsondiffpatch` prior to `0.7.2` are vulnerable to Cross-site Scripting (XSS) in the `HtmlFormatter...
npm
No PRs yet
Angular SSR: Global Platform Injector Race Condition Leads to Cross-Request Data Leakage
GHSA-68x2-mx4q-78m7 CVE-2025-59052 HIGH 3 months ago
### Impact
Angular uses a DI container (the "platform injector") to hold request-specific state during server-side rendering. For historical reaso...
npm
92
Dependabot PRs
1%
Merged
interactive-git-checkout has a Command Injection vulnerability
GHSA-4wcm-7hjf-6xw5 CVE-2025-59046 CRITICAL 3 months ago
The npm package `interactive-git-checkout` is an interactive command-line tool that allows users to checkout a git branch while it prompts for the ...
npm
No PRs yet
Claude Code vulnerable to arbitrary code execution caused by maliciously configured git email
GHSA-j4h9-wv2m-wrf7 CVE-2025-59041 HIGH 3 months ago
At startup, Claude Code constructed a shell command that interpolated the value of `git config user.email` from the current workspace. If an attack...
npm
No PRs yet
Decap CMS Cross Site Scripting (XSS) vulnerability
GHSA-xp8g-32qh-mv28 CVE-2025-57520 MODERATE 3 months ago
Decap CMS through 3.8.3 is vulnerable to stored Cross-Site Scripting (XSS) in the admin preview pane. User-controlled fields (e.g., title, descript...
npm
No PRs yet
Webrecorder packages are vulnerable to XSS through 404 error handling logic
GHSA-w765-jm6w-4hhj CVE-2025-58765 HIGH 3 months ago
A Reflected Cross-Site Scripting (XSS) vulnerability exists in the 404 error handling logic of wabac.js v2.23.10 and below. The parameter `requestU...
npm
No PRs yet
Claude Code rg vulnerability does not protect against approval prompt bypass
GHSA-qxfv-fcpc-w36x CVE-2025-58764 HIGH 3 months ago
Due to an error in command parsing, it was possible to bypass the Claude Code confirmation prompt to trigger execution of an untrusted command. Rel...
npm
No PRs yet
Vite middleware may serve files starting with the same name with the public directory
GHSA-g4jq-h2w9-997c CVE-2025-58751 LOW 3 months ago
### Summary
Files starting with the same name with the public directory were served bypassing the `server.fs` settings.
### Impact
Only apps that ...
npm
No PRs yet
Vite's `server.fs` settings were not applied to HTML files
GHSA-jqfw-vq24-v9c3 CVE-2025-58752 LOW 3 months ago
### Summary
Any HTML files on the machine were served regardless of the `server.fs` settings.
### Impact
Only apps that match the following condi...
npm
No PRs yet
Cattown is Vulnerable to Uncontrolled Resource Consumption through Inefficient Regular Expression Complexity
GHSA-455v-w7r9-3vv9 CVE-2025-58451 HIGH 3 months ago
### Overview
A security review of the Cattown identified multiple weaknesses that could potentially impact its stability and security.
### Affecte...
npm
No PRs yet
Element Plus Link component (el-link) implements insufficient input validation for the href attribute
GHSA-5m5x-9j46-h678 CVE-2025-57665 MODERATE 3 months ago
Element Plus Link component (el-link) prior to 2.11.0 implements insufficient input validation for the href attribute, creating a security abstract...
npm
No PRs yet
DuckDB NPM packages 1.3.3 and 1.29.2 briefly compromised with malware
GHSA-w62p-hx95-gf2c CVE-2025-59037 HIGH 3 months ago
The DuckDB distribution for [Node.js](http://node.js/) on [npm](https://www.npmjs.com/) was compromised with malware (along with [several other pac...
npm
No PRs yet
MCP Inspector is Vulnerable to Potential Command Execution via XSS When Connecting to an Untrusted MCP Server
GHSA-g9hg-qhmf-q45m CVE-2025-58444 HIGH 3 months ago
An XSS flaw exists in the MCP Inspector local development tool when it renders a redirect URL returned by a remote MCP server. If the Inspector con...
npm
No PRs yet
@akoskm/create-mcp-server-stdio is vulnerable to MCP Server Command Injection through `exec` API
GHSA-3ch2-jxxc-v4xf CVE-2025-54994 CRITICAL 3 months ago
# Command Injection in MCP Server
The MCP Server at https://github.com/akoskm/create-mcp-server-stdio is written in a way that is vulnerable to co...
npm
No PRs yet
CodeceptJS's incomprehensive sanitation can lead to Command Injection
GHSA-34w8-mcwr-vg29 CVE-2025-57285 CRITICAL 3 months ago
CodeceptJS versions 3.5.0 through 3.7.5-beta.18 contain a command injection vulnerability in the emptyFolder function (lib/utils.js). The execSync ...
npm
No PRs yet
N8N's Chat Trigger component is vulnerable to XSS
GHSA-v2x8-97xq-8xrr CVE-2025-56265 HIGH 3 months ago
An arbitrary file upload vulnerability in the Chat Trigger component of N8N v1.95.3, v1.100.1, and v1.101.1 allows attackers to execute arbitrary c...
npm
No PRs yet
SimStudioAI: A function in route.ts is vulnerable to Code Injection
GHSA-g4c9-f287-64xg CVE-2025-10097 MODERATE 3 months ago
A vulnerability was identified in SimStudioAI sim. This impacts an unknown function of the file apps/sim/app/api/function/execute/route.ts. The man...
npm
No PRs yet
sanitize-html is vulnerable to XSS through incomprehensive sanitization
GHSA-qhxp-v273-g94h CVE-2019-25225 MODERATE 3 months ago
`sanitize-html` prior to version 2.0.0-beta is vulnerable to Cross-site Scripting (XSS). The `sanitizeHtml()` function in `index.js` does not sanit...
npm
No PRs yet
Server-Side Request Forgery via /_image endpoint in Astro Cloudflare adapter
GHSA-qpr4-c339-7vq8 CVE-2025-58179 HIGH 3 months ago
### Summary
When using Astro's Cloudflare adapter (`@astrojs/cloudflare`) configured with `output: 'server'` while using the default `imageService...
npm
No PRs yet
Hono's flaw in URL path parsing could cause path confusion
GHSA-9hp6-4448-45g2 CVE-2025-58362 HIGH 3 months ago
### Summary
A flaw in the `getPath` utility function could allow path confusion and potential bypass of proxy-level ACLs (e.g. Nginx location bloc...
npm
3
Dependabot PRs
Electron has ASAR Integrity Bypass via resource modification
GHSA-vmqv-hx8q-j7mg CVE-2025-55305 MODERATE 3 months ago
### Impact
This only impacts apps that have the `embeddedAsarIntegrityValidation` and `onlyLoadAppFromAsar` [fuses](https://www.electronjs.org/docs...
npm
No PRs yet
Claude Code Vulnerable to Arbitrary Code Execution Due to Insufficient Startup Warning
GHSA-ph6w-f82w-28w6 HIGH 3 months ago
When Claude Code was started in a new directory, it displayed a warning asking, "Do you trust the files in this folder?". This warning did not prop...
npm
No PRs yet
CKEditor 5 cross-site scripting (XSS) vulnerability in the clipboard package
GHSA-x9gp-vjh6-3wv6 CVE-2025-58064 LOW 3 months ago
### Impact
A Cross-Site Scripting (XSS) vulnerability has been discovered in the CKEditor 5 clipboard package. This vulnerability could be triggere...
npm
No PRs yet
mcp-markdownify-server vulnerable to command injection in pptx-to-markdown tool
GHSA-45qj-4xq3-3c45 CVE-2025-58358 HIGH 3 months ago
### Summary
A command injection vulnerability exists in the `mcp-markdownify-server` MCP Server. The vulnerability is caused by the unsanitized us...
npm
No PRs yet
Next.js Affected by Cache Key Confusion for Image Optimization API Routes
GHSA-g5qg-72qw-gw5v CVE-2025-57752 MODERATE 3 months ago
A vulnerability in Next.js Image Optimization has been fixed in v15.4.5 and v14.2.31. When images returned from API routes vary based on request he...
npm
No PRs yet
Next.js Content Injection Vulnerability for Image Optimization
GHSA-xv57-4mr9-wg8v CVE-2025-55173 MODERATE 3 months ago
A vulnerability in **Next.js Image Optimization** has been fixed in **v15.4.5** and **v14.2.31**. The issue allowed attacker-controlled external im...
npm
No PRs yet