Malicious code in @trigo/atrix-mongoose (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8faf4ce8a59f1dddea70c86855597a55d78518cc7f1c98ae103c8be6559acf5c The package @trigo/atrix-mongoose was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-179793

Malicious code in chakra-ui-levels-mdx-mongoose npm...

EUVD-2025-116666

Malicious code in antares-rocket-server-mongoose npm...

EUVD-2025-121803

Malicious code in spectron-protractor-nconf-mongoose npm...

EUVD-2025-114860

Malicious code in cross-env-betelgeuse-pm2-mongoose npm...

EUVD-2025-111558

Malicious code in loopback-mensa-chai-mongoose npm...

EUVD-2025-124146

Malicious code in octans-miranda-semantic-release-mongoose npm...

EUVD-2025-124757

Malicious code in mongoose-nextjs-tailwindcss-xml npm...

EUVD-2025-116519

Malicious code in ariel-corvus-event-mongoose npm...

EUVD-2025-52108

Malicious code in serious-harlequin-mongoose npm...

MAL-2025-43640 Malicious code in bootes-local-nightwatch-mongoose (npm)

The package bootes-local-nightwatch-mongoose was found to contain malicious code...

Malicious code in mongoose-mongodb (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3cfffa7f52f4e6d69ba4fc23ded09e40b630a939dac0ba79a7a72feb76aba11 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in mongoos (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ab32f7c212c797143b0b25f1f96b0e6cdce969c148e8ce5973c3c95ad99f2dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2022-25299

This affects the package cesanta/mongoose before 7.6. The unsafe handling of file names during upload using mghttpupload method may enable attackers to write files to arbitrary locations outside the designated target folder...