VDB
MAL-2026-4621
MAL-2026-4621
PUBLISHED
CVSS 8.600000381469727 HIGH
Malicious code in nolimit-x (npm)
Risk Scores
CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| npm | nolimit-x | 1.0.262, 1.0.197, 1.0.194 |
| npm | nolimit-x |
Timeline
- May 20, 2026 CVE Published
- Jun 25, 2026 CVE Updated
References
- https://www.npmjs.com/package/nolimit-x/v/1.0.197 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.194 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.267 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.264 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.216 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.263 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.239 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.220 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.256 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.227 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.274 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.236 package
- https://www.npmjs.com/package/nolimit-x/v/1.0.240 package
- https://github.com/advisories/GHSA-cp8c-2xwh-q227 advisory