6 matches found
@lessondesk/schoolbus (>=3.0.43 <=5.2.1) potentially affected by unknown CVE via @tiaanduplessis/react-progressbar (=1.0.0)
@tiaanduplessis/react-progressbar NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @tiaanduplessis/react-progressbar and may be impacted: - @lessondesk/schoolbus =3.0.43, =5.2.1 Source cves: unknown CVE Source advisory:...
@lessondesk/schoolbus (>=0.0.0 <=2.2.27), @radio-retail/ui (>=0.1.1 <=1.3.1) potentially affected by unknown CVE via just-toasty (>=1.4.0 <=1.7.0)
just-toasty NPM version =1.4.0, =0.0.0, =0.1.1, =1.3.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191115...
Malicious code in @lessondesk/schoolbus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c14a4cce7a095ba23b1ec9898ad654afc8e736c94cf26a1b8c15aa123973fe9 The package @lessondesk/schoolbus was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-199170
Malicious code in @lessondesk/schoolbus npm...
MAL-2025-191032 Malicious code in @lessondesk/schoolbus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c14a4cce7a095ba23b1ec9898ad654afc8e736c94cf26a1b8c15aa123973fe9 The package @lessondesk/schoolbus was found to contain malicious code. Source: ghsa-malware...
@lessondesk/schoolbus (>=3.0.43 <=5.2.1) potentially affected by unknown CVE via @tiaanduplessis/react-progressbar (=1.0.0)
@tiaanduplessis/react-progressbar NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @tiaanduplessis/react-progressbar and may be impacted: - @lessondesk/schoolbus =3.0.43, =5.2.1 Source cves: unknown CVE Source advisory:...