3 matches found
CVE-2023-30857
@aedart/support is the support package for Ion, a monorepo for JavaScript/TypeScript packages. Prior to version 0.6.1, there is a possible prototype pollution issue for the MetadataRecord, when merged with a base class' metadata object, in meta decorator from the @aedart/support package. The...
Malicious code in package-ion (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b8ac63d905d68836f3d344e37ff19f950a3ddca0da0d9bd4a857cede197c5d8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5177 Malicious code in package-ion (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b8ac63d905d68836f3d344e37ff19f950a3ddca0da0d9bd4a857cede197c5d8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...