13 matches found
EUVD-2026-36744
remotion-dev remotion v4.0.409 was discovered to contain an arbitrary file write vulnerability...
EUVD-2026-36743
remotion-dev remotion v4.0.409 was discovered to contain a remote code execution RCE vulnerability...
CVE-2026-30120
remotion-dev remotion v4.0.409 was discovered to contain a remote code execution RCE vulnerability...
CVE-2026-30121
remotion-dev remotion v4.0.409 was discovered to contain an arbitrary file write vulnerability...
CVE-2026-30120
remotion-dev remotion v4.0.409 was discovered to contain a remote code execution RCE vulnerability...
CVE-2026-30121
remotion-dev remotion v4.0.409 was discovered to contain an arbitrary file write vulnerability...
CVE-2026-30121
The CVE refers to CVE-2026-30121 affecting Remotion v4.0.409, describing an arbitrary file write vulnerability. The connected sources consistently identify the issue as arbitrary file write in Remotion, but none provide concrete technical details such as vulnerable component/trigger, root cause, ...
CVE-2026-30120
CVE-2026-30120 concerns the Remotion project: remotion v4.0.409 has a reported remote code execution (RCE) vulnerability. The NVD/NVD-derived entries and ENISA/EUVD mirrors describe an exploit with a CVSS v3.1 base score of 9.8 (CRITICAL), attack vector NETWORK, no privileges required, no user in...
security-advisories
Security Advisories This repository contains public security...
Malicious Package
Overview tailwindcss-remotion is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in tailwindcss-remotion (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 20ffa99cd71dcbaf3fac3816f0a75102c058edefd706bfcf1803d0c50a5f43dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48307 Malicious code in tailwindcss-remotion (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 20ffa99cd71dcbaf3fac3816f0a75102c058edefd706bfcf1803d0c50a5f43dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
EUVD-2025-33740
Malicious code in tailwindcss-remotion npm...