Lucene search
K

18 matches found

Snyk
Snyk
added 2023/06/06 8:20 a.m.6 views

Malicious Package

Overview native-svg is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2023/03/01 8:18 a.m.2 views

Malicious Package

Overview issues-changelog-generator is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if thi...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2023/03/01 8:18 a.m.4 views

Malicious Package

Overview testneb is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2023/01/29 3:29 p.m.2 views

Malicious Package

Overview hosseinp is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/09/28 8:12 a.m.6 views

Malicious Package

Overview nonexistantpackageasdfgh is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/09/13 1:22 p.m.3 views

Malicious Package

Overview @arkadium/eagle-user-client is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if th...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/09/08 11:24 a.m.2 views

Malicious Package

Overview @cloud-panel/single-spa-vue is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if th...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/08/11 11:43 a.m.6 views

Malicious Package

Overview ot-performance is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package wa...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/08/05 8:8 a.m.2 views

Malicious Package

Overview discount-package-js is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packa...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/08/03 8:7 a.m.5 views

Malicious Package

Overview mew-connect-handshake-server is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/07/06 8:6 a.m.9 views

Malicious Package

Overview ts-node-lessons-learned is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:26 a.m.8 views

Malicious Package

Overview zilliqa is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

9.8CVSS7AI score
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:25 a.m.6 views

Malicious Package

Overview eth-faucet is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

9.8CVSS7AI score
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:25 a.m.4 views

Malicious Package

Overview helix-rum-collector is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packa...

9.8CVSS7AI score
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:24 a.m.4 views

Malicious Package

Overview phoenix.site is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

9.8CVSS7AI score
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:24 a.m.5 views

Malicious Package

Overview azure-linux-tools is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Note: This malicious package was uncovered by one...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:24 a.m.5 views

Malicious Package

Overview klook-node-framework is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Note: This malicious package was uncovered by...

9.8CVSS7.1AI score
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:24 a.m.4 views

Malicious Package

Overview git-en-boite-app is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Note: This malicious package was uncovered by one ...

9.8CVSS7.1AI score
Exploits0References3
Rows per page
Query Builder