48 matches found
CVE-2026-41679
Paperclip is a Node.js server and React UI that orchestrates a team of AI agents to run a business. Prior to version 2026.416.0, an unauthenticated attacker can achieve full remote code execution on any network-accessible Paperclip instance running in authenticated mode with default configuration...
Malicious code in react-ui-polyfills (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63c43460df1ee670b8a5982d77e7028aef7df25fa38922f743489fd52b41b5ea Package advertises itself as React polyfills / UI compatibility helpers but ships no React or polyfill code. The exported getPlugin function returns ...
MAL-2026-3270 Malicious code in @bcs-react-ui/select (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f13a9b44b9cd000d9cc8fbcd4cbc765178ea32a471cd8b339d4ebdda4182d52 The package @bcs-react-ui/select was found to contain malicious code. Source: ghsa-malware...
MAL-2026-3269 Malicious code in @bcs-react-ui/context-menu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 22d7735468c4f2cdf66767c4b52a6a089b195ea5bb820b82a03690fb0c9586bc The package @bcs-react-ui/context-menu was found to contain malicious code. Source: ghsa-malware...
MAL-2026-3267 Malicious code in @bcs-bank-react-ui/swiper-slider (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ecc6cabd59042f5fc22327d81efedc2ed1926f8f9457d124906fde72fbf65d46 The package @bcs-bank-react-ui/swiper-slider was found to contain malicious code. Source: ghsa-malware...
Malicious code in bve-react-ui-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7129addcf662b66f1b9c3bccfef1b910ba7d7529205773a6ef69f5fcec9b9178 The package bve-react-ui-kit was found to contain malicious code. Source: ghsa-malware e12ba9c2363df47acb928246ccbbfedb85b5cbfb0f433286818034daf65dfd...
EUVD-2026-3084
Malicious code in bve-react-ui-kit npm...
MAL-2026-271 Malicious code in bve-react-ui-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7129addcf662b66f1b9c3bccfef1b910ba7d7529205773a6ef69f5fcec9b9178 The package bve-react-ui-kit was found to contain malicious code. Source: ghsa-malware e12ba9c2363df47acb928246ccbbfedb85b5cbfb0f433286818034daf65dfd...
Malicious Package
Overview wfui-dsm-react-ui is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious Package
Overview wfui-dbd-react-ui is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
EUVD-2025-200281
Malicious code in wfui-dbd-react-ui npm...
MAL-2025-191668 Malicious code in wfui-dbd-react-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a49a931af71a32dfa7644c29cca564d41bd857fa8cdea4956e0764cd224834ad The package wfui-dbd-react-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in wfui-dbd-react-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a49a931af71a32dfa7644c29cca564d41bd857fa8cdea4956e0764cd224834ad The package wfui-dbd-react-ui was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-200282
Malicious code in wfui-dsm-react-ui npm...
MAL-2025-191669 Malicious code in wfui-dsm-react-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ab7eb463079033f35833ad6226f3db96e8b3e17ed382e0868d2ad823af5bb34 The package wfui-dsm-react-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in wfui-dsm-react-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ab7eb463079033f35833ad6226f3db96e8b3e17ed382e0868d2ad823af5bb34 The package wfui-dsm-react-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-ui-animates (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faea1c84618f620702405ada06f82a0352d57b6f8544e33b87cde589284b5ef1 The package react-ui-animates was found to contain malicious code. Source: ghsa-malware...
MAL-2025-49329 Malicious code in react-ui-animates (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faea1c84618f620702405ada06f82a0352d57b6f8544e33b87cde589284b5ef1 The package react-ui-animates was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-37461
Malicious code in react-ui-animates npm...
Malicious code in react-ui-toast (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6789082e9bf3c52d9daaa6abb3f09ea5012ad93106de355e66a04ee1be9c6605 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...