release
alert
Auto-detect
Apple App Store
Rust Crate (Cargo)
Chocolatey Package
Docker Image
Debian Package (Bookworm)
Go Module
Ruby GEM
GitHub Repository
GitLab Repository
Maven Central
NPM Package
NuGet Package
Packagist Package
Python Package (PyPI)
VS Code Extension
WordPress Plugin
Search
/
Sign in
CVE-2025-63706
Published
May 7th, 2026
Thursday, 7 May 2026, 15:16
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
2
PROJECTS
Description
NPM package next-npm-version1.0.1 is vulnerable to Command injection.
Affected Projects
2
References
3
afeiship/next-npm-version
Get npm package version.
GitHub
@jswork/next-npm-version
Get npm package version.
NPM
GitHub
NPM