Malicious code in sedna-barnard-bunyan-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39f27119a3e95fe00266bbfda55d5c45c50fc7ef145b70d15e67d742e46f33fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-149249 Malicious code in vulcan-node-sass-commitlint-config-angular-puppeteer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1bb779a176a4c829aea3911dc0bc2e0fc29f6318b8e37e107ee22406818d887d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-142692 Malicious code in framework-quasar-spawn-commitlint-config-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdf3c1ced05681da6b00f91ff5765d1da4c60751cf4ae4ef9f608e00d15fc266 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144176 Malicious code in kinetic-lint-staged-commitlint-config-angular-vortex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb0ccf783d99e2f174768c7a2d194db3957b6b4005ac8c4e3b73a310d979249d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-140160 Malicious code in buffer-levels-commitlint-config-angular-protractor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac128b29c04901328bcb6420c6ca7c26bc5e847daa6dc52991d4dc227b7dbe23 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Frequency Diverse (FD)-RIS-Enhanced Covert Communications: Defense against Wiretapping Via Joint Distance-Angle Beamforming

In response to the security blind zone challenges faced by traditional reconfigurable intelligent surface RIS-aided covert communication CC systems, the joint distance-angle beamforming capability of frequency diverse RIS FD-RIS shows significant potential for addressing these limitations...

EUVD-2025-38297

A reflected cross-site scripting XSS vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

CVE-2025-61261

A reflected cross-site scripting XSS vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

CVE-2025-61261

A reflected cross-site scripting XSS vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

CVE-2025-61261

A reflected cross-site scripting XSS vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

UBUNTU-CVE-2025-61261

A reflected cross-site scripting XSS vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

@ai-sdk/angular (>=1.1.0-beta.0 <=1.1.0-beta.28), @ai-sdk/langchain (>=1.1.0-beta.0 <=1.1.0-beta.28) +5 more potentially affected by CVE-2025-48985 via ai (>=5.1.0-beta.0 <=5.1.0-beta.8)

ai NPM version =5.1.0-beta.0, =1.1.0-beta.0, =1.1.0-beta.0, =1.1.0-beta.0, =2.1.0-beta.0, =1.1.0-beta.0, =3.1.0-beta.0, =2.1.0-beta.0, =2.1.0-beta.28 Source cves: CVE-2025-48985 Source advisory: SNYK:JS-AI-13863465...

CKEditor 安全漏洞

CKEditor is an enterprise WYSIWYG editor from CKEditor open source. A security vulnerability exists in CKEditor version v46.1.0 and Angular version v18.0.0, which stems from reflective cross-site scripting and could lead to an attacker executing arbitrary code in a user's browser environment...

PT-2025-45490

Name of the Vulnerable Software and Affected Versions CKeditor version 46.1.0 Angular version 18.0.0 Description A reflected cross-site scripting XSS issue exists that allows attackers to execute arbitrary code within a user’s browser. This is achieved by injecting a crafted payload. The...

CVE-2025-61261

A reflected cross-site scripting XSS vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

CVE-2025-61261

CVE-2025-61261 is a reflected XSS vulnerability affecting CKEditor 46.1.0 (CKEditor 5) when used with Angular 18.0.0. The issue enables an attacker-supplied payload to execute in the user’s browser context (impact: partial in some documents; CVSS 3.1 base score 5.4). Affected component is CKEdito...

CVE-2025-61261

A reflected cross-site scripting XSS vulnerability in CKeditor v46.1.0 & Angular v18.0.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload...

Malicious code in capes-template-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69552ec46096bcb8407bb78e3a0e23b6b95e46ac69c7dd1c41aa79edf250cbe2 The package capes-template-angular was found to contain malicious code. Source: ossf-package-analysis...

EUVD-2025-37549

Malicious code in capes-template-angular npm...

MAL-2025-49332 Malicious code in capes-template-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69552ec46096bcb8407bb78e3a0e23b6b95e46ac69c7dd1c41aa79edf250cbe2 The package capes-template-angular was found to contain malicious code. Source: ossf-package-analysis...