2 matches found
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...
Malicious code in @sporta-technology/d11-web-components.drawer (npm)
--- -= Per source details. Do not edit below this line.=-...