Lucene search
K

6 matches found

OSV
OSV
added 2025/09/16 7:51 a.m.4 views

MAL-2025-47307 Malicious code in ember-headless-form (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4687ef20e35f1ba6932bfe28dbaae50901c594a51071d24c97e6d496f7001382 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/16 7:51 a.m.7 views

Malicious code in ember-headless-form (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4687ef20e35f1ba6932bfe28dbaae50901c594a51071d24c97e6d496f7001382 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/16 7:51 a.m.4 views

Malicious code in ember-headless-form-yup (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed8ff319c2845a41812ca372e9a7e36c894cd5027bfadab1381fefb8892e4074 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References7
OSV
OSV
added 2025/09/16 7:51 a.m.2 views

MAL-2025-47308 Malicious code in ember-headless-form-yup (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed8ff319c2845a41812ca372e9a7e36c894cd5027bfadab1381fefb8892e4074 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References7
vulnersOsv
vulnersOsv
added 2025/09/15 7:39 a.m.6 views

@lblod/ember-rdfa-editor (>=12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693 <=13.10.2) potentially affected by unknown CVE via ember-headless-form (=1.1.1)

ember-headless-form NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on ember-headless-form and may be impacted: - @lblod/ember-rdfa-editor =12.4.0-dev.1f5a5b71099288ff594f4d5de652b8af64917693, =13.10.2 Source cves: unknown CVE Source...

5.7AI score
Exploits0
Snyk
Snyk
added 2025/09/15 7:39 a.m.3 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...

9.8CVSS7AI score
Exploits0References2
Rows per page
Query Builder