Lucene search
K

9 matches found

vulnersosv
vulnersosv
added 2026/05/08 8:34 p.m.7 views

@babel/preset-env (>=8.0.0-alpha.0 <=8.0.0-rc.6), @neetly/babel-preset (>=1.0.0-alpha.1 <=1.0.0-alpha.16) +2 more potentially affected by CVE-2026-44728 via @babel/plugin-transform-modules-systemjs (=8.0.0-rc.6)

@babel/plugin-transform-modules-systemjs NPM version =8.0.0-rc.6 is affected by a known vulnerability. The following packages have a transitive dependency on @babel/plugin-transform-modules-systemjs and may be impacted: - @babel/preset-env =8.0.0-alpha.0, =1.0.0-alpha.1, =1.0.0-alpha.14,...

8.2CVSS5.4AI score0.00125EPSS
Exploits0
ossf
ossf
added 2025/08/14 6:52 p.m.5 views

Malicious code in babel-preset-env-cx (npm)

The package babel-preset-env-cx was found to contain malicious code...

7AI score
Exploits0
osv
osv
added 2025/08/14 6:52 p.m.3 views

MAL-2025-15303 Malicious code in babel-preset-env-2 (npm)

The package babel-preset-env-2 was found to contain malicious code...

7.2AI score
Exploits0
ossf
ossf
added 2025/08/14 6:52 p.m.6 views

Malicious code in babel-preset-env-2 (npm)

The package babel-preset-env-2 was found to contain malicious code...

7AI score
Exploits0
nessus
nessus
added 2023/10/17 12:0 a.m.51 views

Debian DSA-5528-1 : node-babel7 - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5528 advisory. - Babel is a compiler for writingJavaScript. In @babel/traverse prior to versions 7.23.2 and 8.0.0-alpha.4 and all versions of babel-traverse, using Babel to compile...

9.3CVSS8.3AI score0.0052EPSS
Exploits0References7
prion
prion
added 2023/10/12 5:15 p.m.35 views

Code injection

Babel is a compiler for writingJavaScript. In @babel/traverse prior to versions 7.23.2 and 8.0.0-alpha.4 and all versions of babel-traverse, using Babel to compile code that was specifically crafted by an attacker can lead to arbitrary code execution during compilation, when using plugins that re...

4.3CVSS8.7AI score0.0052EPSS
Exploits0References7Affected Software9
ubuntucve
ubuntucve
added 2023/10/12 5:15 p.m.48 views

CVE-2023-45133

Babel is a compiler for writingJavaScript. In @babel/traverse prior to versions 7.23.2 and 8.0.0-alpha.4 and all versions of babel-traverse, using Babel to compile code that was specifically crafted by an attacker can lead to arbitrary code execution during compilation, when using plugins that re...

9.3CVSS7.2AI score0.0052EPSS
Exploits0References8
vulnrichment
vulnrichment
added 2023/10/12 4:17 p.m.36 views

CVE-2023-45133 Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code

Babel is a compiler for writingJavaScript. In @babel/traverse prior to versions 7.23.2 and 8.0.0-alpha.4 and all versions of babel-traverse, using Babel to compile code that was specifically crafted by an attacker can lead to arbitrary code execution during compilation, when using plugins that re...

9.3CVSS7.4AI score0.0052EPSS
Exploits0References7
cve
cve
added 2023/10/12 4:17 p.m.397 views

CVE-2023-45133

CVE-2023-45133 affects Babel’s traversal layer. The issue allows arbitrary code execution during compilation when compiling code crafted by an attacker via plugins that rely on path.evaluate() or path.evaluateTruthy(). Affected in: @babel/traverse prior to 7.23.2 and 8.0.0-alpha.4, and all versio...

9.3CVSS9.1AI score0.0052EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder