nice-elements (>=1.1.2 <=1.13.3), olaii-web-common (>=1.0.0 <=1.0.33) potentially affected by unknown CVE via angular-truncate (=0.0.1-security)

angular-truncate NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on angular-truncate and may be impacted: - nice-elements =1.1.2, =1.0.0, =1.0.33 Source cves: unknown CVE Source advisory: OSV:MAL-2025-14532...

Malicious code in angular-truncate (npm)

The package angular-truncate was found to contain malicious code...

MAL-2025-14532 Malicious code in angular-truncate (npm)

The package angular-truncate was found to contain malicious code...