Lucene search
K

6 matches found

OSV
OSV
added 2026/01/02 9:29 p.m.3 views

MAL-2026-8 Malicious code in @nitaiapiiro/rand_emoji (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 686999eb6a9720383d59bbca502497c33b67e49cd4f21b0fd3eba33d9be8aefe The package @nitaiapiiro/randemoji was found to contain malicious code...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-35201

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01162EPSS
Exploits1References3
Snyk
Snyk
added 2025/09/15 7:39 a.m.1 views

Embedded Malicious Code

Overview @ctrl/ngx-emoji-mart is a Customizable Slack-like emoji picker for Angular Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including...

9.8CVSS7AI score
Exploits0References2
NVD
NVD
added 2023/04/28 9:15 p.m.24 views

CVE-2023-30858

The Denosaurs emoji package provides emojis for dinosaurs. Starting in version 0.1.0 and prior to version 0.3.0, the reTrimSpace regex has 2nd degree polynomial inefficiency, leading to a delayed response given a big payload. The issue has been patched in 0.3.0. As a workaround, avoid using the...

7.5CVSS6.3AI score0.01162EPSS
Exploits1References3
CVE
CVE
added 2023/04/28 8:49 p.m.41 views

CVE-2023-30858

The CVE-2023-30858 entry describes a ReDoS in the Denosaurs emoji package (Denosaurs emoji) due to the reTrimSpace regex with a 2nd‑degree polynomial inefficiency in versions 0.1.0 through 0.3.0, causing delayed responses on large payloads. The issue is patched in version 0.3.0; a workaround is t...

7.5CVSS6.3AI score0.01162EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/04/28 8:49 p.m.25 views

CVE-2023-30858 Denosaurs emoji has ReDoS vulnerability in `replace` function

The Denosaurs emoji package provides emojis for dinosaurs. Starting in version 0.1.0 and prior to version 0.3.0, the reTrimSpace regex has 2nd degree polynomial inefficiency, leading to a delayed response given a big payload. The issue has been patched in 0.3.0. As a workaround, avoid using the...

5.3CVSS7.5AI score0.01162EPSS
Exploits1References5
Rows per page
Query Builder