Malicious code in nativescript-gainsight-px (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a623f285a8491c50ebbad0ad2a62988fbf68724329f6d7b0a7d30b1bf44ded73 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

@adobe/aio-app-scripts (>=0.6.0 <=2.3.0), @adobe/aio-cli (>=2.1.0 <=4.0.0) +21 more potentially affected by CVE-2020-28471 via properties-reader (>=2.0.0 <=2.1.1)

properties-reader NPM version =2.0.0, =0.6.0, =2.1.0, =1.0.0, =0.3.1, =1.0.3, =0.6.0, =1.7.0, =0.0.16, =2.0.0, =2.4.1-next.238, =2.0.0-RC1, =2.1.1-next.0, =2.1.1-next.0, =2.2.1-next.5, =2.1.1-next.0, =2.5.2-next.17 and more Source cves: CVE-2020-28471 Source advisory:...

Examples NativeScript - Customized SSL, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Examples NativeScript published at the 'play' market has multiple vulnerabilities...