220 matches found
ROOT-APP-NPM-CVE-2022-0144 CVE-2022-0144 in @rootio/shelljs - Patched by Root
Root has patched CVE-2022-0144 in the @rootio/shelljs package for Root:npm. Multiple fixed versions available...
Astra Linux – Vulnerability in node-shelljs
ShellJS is vulnerable to improper privilege management...
Malicious code in sagitta-shelljs-halley-grunt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c27d14c78f0650cc9e36a6a09704b5376e65f49f575b3bcc650e67f28f0dbb37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175646
Malicious code in wasat-carina-shelljs-sqlite npm...
EUVD-2025-177613
Malicious code in nextjs-shelljs-centaurus-singularity npm...
EUVD-2025-177377
Malicious code in paleoceanography-shelljs-umbriel-galaxy npm...
EUVD-2025-180126
Malicious code in baryon-sublimation-apollo-shelljs npm...
MAL-2025-186073 Malicious code in ceres-petrology-callisto-shelljs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ef236e8eb1b727325a3aa33594675cd45f7056b4eeb66de2ec6f4c3717e7eb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188919 Malicious code in proxima-shelljs-spinner-brane (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f7bd32ce89463fc87f2bf996cd96de28e6fa265c87a586e1414a63e912a88fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-186737 Malicious code in enceladus-shelljs-cryonics-betelgeuse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d57706f2890df2c5e6d5e2d2c8879191da18cd3bc37af5c20d75071e63233fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188795 Malicious code in prettier-despina-gacrux-shelljs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fec6deb30bd5cd5a5e545dce825592415f1f20a4686a084e6cb1c5169e3902 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-189475 Malicious code in shelljs-package-writable-jabbah (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f60830a143e445f6febb17ec8af079069f1883139d63dfad0461f1d08e9008a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176022
Malicious code in telesto-neptune-tethys-shelljs npm...
EUVD-2025-177080
Malicious code in prettier-despina-gacrux-shelljs npm...
EUVD-2025-177275
Malicious code in pegasus-shelljs-public-seismology npm...
EUVD-2025-176956
Malicious code in proxima-shelljs-spinner-brane npm...
EUVD-2025-176484
Malicious code in scripts-shelljs-quark-gridsome npm...
EUVD-2025-179145
Malicious code in enceladus-shelljs-cryonics-betelgeuse npm...
EUVD-2025-176553
Malicious code in sagitta-shelljs-halley-grunt npm...
EUVD-2025-176400
Malicious code in shelljs-package-writable-jabbah npm...