1344 matches found
MAL-2025-190973 Malicious code in itobuz-angular-button (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a1e5a2f36eaf45beca864b2fa27d356d6d087ab2083dae3a6fab3dc08561357 The package itobuz-angular-button was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-199070
Malicious code in itobuz-angular-button npm...
Malicious code in itobuz-angular-button (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a1e5a2f36eaf45beca864b2fa27d356d6d087ab2083dae3a6fab3dc08561357 The package itobuz-angular-button was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-199071
Malicious code in itobuz-angular-auth npm...
MAL-2025-190972 Malicious code in itobuz-angular-auth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afed61db59aa59cee728d1b2cbe413a85ae32a192004efad9e9d126770433bdf The package itobuz-angular-auth was found to contain malicious code. Source: ghsa-malware...
Malicious code in itobuz-angular-auth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afed61db59aa59cee728d1b2cbe413a85ae32a192004efad9e9d126770433bdf The package itobuz-angular-auth was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-199072
Malicious code in itobuz-angular npm...
Malicious code in itobuz-angular (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fcdbc14cc1282398d0aa27b0ada7027ef96a6c2b95c3fcb0fefb926cbb45a0e The package itobuz-angular was found to contain malicious code. Source: ghsa-malware 7bb8d54de22fc55a5690d5bf3b51d9847a98a5dcf0d9836311c615cd6a30b2df...
MAL-2025-190971 Malicious code in itobuz-angular (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4fcdbc14cc1282398d0aa27b0ada7027ef96a6c2b95c3fcb0fefb926cbb45a0e The package itobuz-angular was found to contain malicious code. Source: ghsa-malware 7bb8d54de22fc55a5690d5bf3b51d9847a98a5dcf0d9836311c615cd6a30b2df...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
EUVD-2025-198731
Malicious code in @aryanhussain/my-angular-lib npm...
MAL-2025-190713 Malicious code in @aryanhussain/my-angular-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db21c30964586d84965ff2e4fd343156117c9f05c9ad2cfe6b1705d802862e13 The package @aryanhussain/my-angular-lib was found to contain malicious code. Source: ghsa-malware...
CKEditor <= 46.1.0 Reflected XSS Vulnerability
CKEditor 5 is prone to a reflected cross-site scripting XSS vulnerability when used with Angular. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...
EUVD-2025-179202
Malicious code in eclipse-parsec-native-commitlint-config-angular npm...
EUVD-2025-177795
Malicious code in mocha-epimetheus-zenith-commitlint-config-angular npm...
EUVD-2025-178983
Malicious code in exobiology-callback-commitlint-config-angular-slides npm...
EUVD-2025-178613
Malicious code in halley-pm2-semantic-ui-commitlint-config-angular npm...
EUVD-2025-179630
Malicious code in commitlint-config-angular-nodejs-carpo-vortex npm...
MAL-2025-189213 Malicious code in rest-nova-nightwatch-commitlint-config-angular (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 667df92958e84b0615d81c3cbb178f8c117b019ca8357f70aa7c4c9d742be2b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...