EUVD-2025-199213

Malicious code in formik-error-focus npm...

MAL-2025-191096 Malicious code in formik-error-focus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 563b1001dfb7ec0dd27e7ac49eeef45e9a82e958b34b3ee74a4d59b1dee79775 The package formik-error-focus was found to contain malicious code. Source: ghsa-malware...

Malicious code in formik-error-focus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 563b1001dfb7ec0dd27e7ac49eeef45e9a82e958b34b3ee74a4d59b1dee79775 The package formik-error-focus was found to contain malicious code. Source: ghsa-malware...

wao-react-shared-components (>=1.11.0 <=1.11.37) potentially affected by unknown CVE via formik-error-focus (=2.0.0)

formik-error-focus NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on formik-error-focus and may be impacted: - wao-react-shared-components =1.11.0, =1.11.37 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191096...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...