VulnerableCode Package Details - pkg:npm/pnpm@10.27.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-fsge-arhh-ekh3 Aliases: CVE-2026-23889 GHSA-6x96-7vc8-cm3p	pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Windows. The path normalization only checks for `./` but not `.\`. On Windows, backslashes are directory separators, enabling path traversal. This vulnerability is Windows-only. This issue impacts Windows pnpm users and Windows CI/CD pipelines (GitHub Actions Windows runners, Azure DevOps). It can lead to overwriting `.npmrc`, build configs, or other files. Version 10.28.1 contains a patch.	10.28.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-jd55-xw7a-ebev Aliases: CVE-2026-24056 GHSA-m733-5w8f-5ggw	pnpm is a package manager. Prior to version 10.28.2, when pnpm installs a `file:` (directory) or `git:` dependency, it follows symlinks and reads their target contents without constraining them to the package root. A malicious package containing a symlink to an absolute path (e.g., `/etc/passwd`, `~/.ssh/id_rsa`) causes pnpm to copy that file's contents into `node_modules`, leaking local data. The vulnerability only affects `file:` and `git:` dependencies. Registry packages (npm) have symlinks stripped during publish and are NOT affected. The issue impacts developers installing local/file dependencies andCI/CD pipelines installing git dependencies. It can lead to credential theft via symlinks to `~/.aws/credentials`, `~/.npmrc`, `~/.ssh/id_rsa`. Version 10.28.2 contains a patch.	10.28.2 Affected by 0 other vulnerabilities. 11.0.0-alpha.0 Affected by 0 other vulnerabilities.
VCID-nntm-h1md-dffv Aliases: CVE-2026-23890 GHSA-xpqm-wm3m-f34h	pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's bin linking allows malicious npm packages to create executable shims or symlinks outside of `node_modules/.bin`. Bin names starting with `@` bypass validation, and after scope normalization, path traversal sequences like `../../` remain intact. This issue affects all pnpm users who install npm packages and CI/CD pipelines using pnpm. It can lead to overwriting config files, scripts, or other sensitive files. Version 10.28.1 contains a patch.	10.28.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-sf1s-d3sy-3yh4 Aliases: CVE-2026-23888 GHSA-6pfh-p556-v868	pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's binary fetcher allows malicious packages to write files outside the intended extraction directory. The vulnerability has two attack vectors: (1) Malicious ZIP entries containing `../` or absolute paths that escape the extraction root via AdmZip's `extractAllTo`, and (2) The `BinaryResolution.prefix` field is concatenated into the extraction path without validation, allowing a crafted prefix like `../../evil` to redirect extracted files outside `targetDir`. The issue impacts all pnpm users who install packages with binary assets, users who configure custom Node.js binary locations and CI/CD pipelines that auto-install binary dependencies. It can lead to overwriting config files, scripts, or other sensitive files leading to RCE. Version 10.28.1 contains a patch.	10.28.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wbvf-6crf-67fx Aliases: CVE-2026-24131 GHSA-v253-rj99-jwpq	pnpm is a package manager. Prior to version 10.28.2, when pnpm processes a package's `directories.bin` field, it uses `path.join()` without validating the result stays within the package root. A malicious npm package can specify `"directories": {"bin": "../../../../tmp"}` to escape the package directory, causing pnpm to chmod 755 files at arbitrary locations. This issue only affects Unix/Linux/macOS. Windows is not affected (`fixBin` gated by `EXECUTABLE_SHEBANG_SUPPORTED`). Version 10.28.2 contains a patch.	10.28.2 Affected by 0 other vulnerabilities. 11.0.0-alpha.0 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-fsge-arhh-ekh3
Aliases:
CVE-2026-23889
GHSA-6x96-7vc8-cm3p

pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Windows. The path normalization only checks for `./` but not `.\`. On Windows, backslashes are directory separators, enabling path traversal. This vulnerability is Windows-only. This issue impacts Windows pnpm users and Windows CI/CD pipelines (GitHub Actions Windows runners, Azure DevOps). It can lead to overwriting `.npmrc`, build configs, or other files. Version 10.28.1 contains a patch.

10.28.1
Affected by 2 other vulnerabilities.

VCID-jd55-xw7a-ebev
Aliases:
CVE-2026-24056
GHSA-m733-5w8f-5ggw

pnpm is a package manager. Prior to version 10.28.2, when pnpm installs a `file:` (directory) or `git:` dependency, it follows symlinks and reads their target contents without constraining them to the package root. A malicious package containing a symlink to an absolute path (e.g., `/etc/passwd`, `~/.ssh/id_rsa`) causes pnpm to copy that file's contents into `node_modules`, leaking local data. The vulnerability only affects `file:` and `git:` dependencies. Registry packages (npm) have symlinks stripped during publish and are NOT affected. The issue impacts developers installing local/file dependencies andCI/CD pipelines installing git dependencies. It can lead to credential theft via symlinks to `~/.aws/credentials`, `~/.npmrc`, `~/.ssh/id_rsa`. Version 10.28.2 contains a patch.

10.28.2
Affected by 0 other vulnerabilities.

11.0.0-alpha.0
Affected by 0 other vulnerabilities.

VCID-nntm-h1md-dffv
Aliases:
CVE-2026-23890
GHSA-xpqm-wm3m-f34h

pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's bin linking allows malicious npm packages to create executable shims or symlinks outside of `node_modules/.bin`. Bin names starting with `@` bypass validation, and after scope normalization, path traversal sequences like `../../` remain intact. This issue affects all pnpm users who install npm packages and CI/CD pipelines using pnpm. It can lead to overwriting config files, scripts, or other sensitive files. Version 10.28.1 contains a patch.

10.28.1
Affected by 2 other vulnerabilities.

VCID-sf1s-d3sy-3yh4
Aliases:
CVE-2026-23888
GHSA-6pfh-p556-v868

pnpm is a package manager. Prior to version 10.28.1, a path traversal vulnerability in pnpm's binary fetcher allows malicious packages to write files outside the intended extraction directory. The vulnerability has two attack vectors: (1) Malicious ZIP entries containing `../` or absolute paths that escape the extraction root via AdmZip's `extractAllTo`, and (2) The `BinaryResolution.prefix` field is concatenated into the extraction path without validation, allowing a crafted prefix like `../../evil` to redirect extracted files outside `targetDir`. The issue impacts all pnpm users who install packages with binary assets, users who configure custom Node.js binary locations and CI/CD pipelines that auto-install binary dependencies. It can lead to overwriting config files, scripts, or other sensitive files leading to RCE. Version 10.28.1 contains a patch.

10.28.1
Affected by 2 other vulnerabilities.

VCID-wbvf-6crf-67fx
Aliases:
CVE-2026-24131
GHSA-v253-rj99-jwpq

pnpm is a package manager. Prior to version 10.28.2, when pnpm processes a package's `directories.bin` field, it uses `path.join()` without validating the result stays within the package root. A malicious npm package can specify `"directories": {"bin": "../../../../tmp"}` to escape the package directory, causing pnpm to chmod 755 files at arbitrary locations. This issue only affects Unix/Linux/macOS. Windows is not affected (`fixBin` gated by `EXECUTABLE_SHEBANG_SUPPORTED`). Version 10.28.2 contains a patch.

10.28.2
Affected by 0 other vulnerabilities.

11.0.0-alpha.0
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-vxqv-gju3-43g9	pnpm is a package manager. Versions 6.25.0 through 10.26.2 have a Command Injection vulnerability when using environment variable substitution in .npmrc configuration files with tokenHelper settings. An attacker who can control environment variables during pnpm operations could achieve Remote Code Execution (RCE) in build environments. This issue is fixed in version 10.27.0.	CVE-2025-69262 GHSA-2phv-j68v-wwqx

Vulnerability

Summary

Aliases

VCID-vxqv-gju3-43g9

pnpm is a package manager. Versions 6.25.0 through 10.26.2 have a Command Injection vulnerability when using environment variable substitution in .npmrc configuration files with tokenHelper settings. An attacker who can control environment variables during pnpm operations could achieve Remote Code Execution (RCE) in build environments. This issue is fixed in version 10.27.0.

CVE-2025-69262
GHSA-2phv-j68v-wwqx

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-12T20:52:15.904783+00:00	GitLab Importer	Affected by	VCID-wbvf-6crf-67fx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pnpm/CVE-2026-24131.yml	38.6.0
2026-06-12T20:52:09.425306+00:00	GitLab Importer	Affected by	VCID-jd55-xw7a-ebev	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pnpm/CVE-2026-24056.yml	38.6.0
2026-06-12T20:52:02.896138+00:00	GitLab Importer	Affected by	VCID-fsge-arhh-ekh3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pnpm/CVE-2026-23889.yml	38.6.0
2026-06-12T20:51:57.302509+00:00	GitLab Importer	Affected by	VCID-nntm-h1md-dffv	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pnpm/CVE-2026-23890.yml	38.6.0
2026-06-12T20:51:46.720406+00:00	GitLab Importer	Affected by	VCID-sf1s-d3sy-3yh4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pnpm/CVE-2026-23888.yml	38.6.0
2026-06-12T15:49:56.658773+00:00	GitLab Importer	Fixing	VCID-vxqv-gju3-43g9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/pnpm/CVE-2025-69262.yml	38.6.0
2026-06-12T07:47:00.648396+00:00	GithubOSV Importer	Fixing	VCID-vxqv-gju3-43g9	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/01/GHSA-2phv-j68v-wwqx/GHSA-2phv-j68v-wwqx.json	38.6.0
2026-06-11T20:37:13.614680+00:00	GHSA Importer	Fixing	VCID-vxqv-gju3-43g9	https://github.com/advisories/GHSA-2phv-j68v-wwqx	38.6.0