213 matches found
Malicious Package
Overview react-native-parallax-scroll-view-updated is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that...
Malicious code in react-native-parallax-scroll-view-updated (npm)
Dependency confusion and typosquatting campaign by threat actor "saif777". Packages use inflated version numbers 9999.9999.9999, 9999.9999.10000, 50.50.50, 7.66.5 to win version resolution in environments with private registries. All active packages execute a postinstall hook "node index.js" that...
MAL-2026-3262 Malicious code in react-native-parallax-scroll-view-updated (npm)
Dependency confusion and typosquatting campaign by threat actor "saif777". Packages use inflated version numbers 9999.9999.9999, 9999.9999.10000, 50.50.50, 7.66.5 to win version resolution in environments with private registries. All active packages execute a postinstall hook "node index.js" that...
CVE-2023-49184
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPDeveloper Parallax Slider Block allows Stored XSS.This issue affects Parallax Slider Block: from n/a through 1.2.4...
CVE-2025-1664
The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Parallax slider in all versions up to, and including, 5.3.1 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-60079
Missing Authorization vulnerability in bPlugins Parallax Section block parallax-section allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Parallax Section block: from n/a through = 1.0.9...
EUVD-2025-204109
Missing Authorization vulnerability in bPlugins Parallax Section block parallax-section allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Parallax Section block: from n/a through = 1.0.9...
CVE-2025-60079
Missing Authorization vulnerability in bPlugins Parallax Section block parallax-section allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Parallax Section block: from n/a through = 1.0.9...
CVE-2025-60079 WordPress Parallax Section block plugin <= 1.0.9 - Broken Authentication vulnerability
Missing Authorization vulnerability in bPlugins Parallax Section block parallax-section allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Parallax Section block: from n/a through = 1.0.9...
CVE-2025-60079 WordPress Parallax Section block plugin <= 1.0.9 - Broken Authentication vulnerability
Missing Authorization vulnerability in bPlugins Parallax Section block parallax-section allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Parallax Section block: from n/a through = 1.0.9...
CVE-2025-60079
CVE-2025-60079 affects the WordPress Parallax Section block plugin (versions up to and including 1.0.9). The root cause is Missing Authorization, allowing functionality to be accessed without proper ACL constraints. Impact is described as access to restricted functionality due to broken authentic...
WordPress plugin Parallax Section block 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
PT-2025-52137
Missing Authorization vulnerability in bPlugins Parallax Section block parallax-section allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Parallax Section block: from n/a through = 1.0.9...
EUVD-2025-175627
Malicious code in wavefunction-parallax-jovian-jasmine npm...
Malicious code in oscillation-aquarius-ursa-parallax (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7127678160b96508d807efcfe044a57b7f9a9206a3c2546e146450bed08b547 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-190249 Malicious code in wavefunction-parallax-jovian-jasmine (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 938e05e40ad6861d8df01b57009bd79edb9c666be6fa41d3d26d00852d06cb71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176226
Malicious code in standard-parallax-chalk-hologram npm...
EUVD-2025-177327
Malicious code in parallax-speleology-cosmicray-lint npm...
EUVD-2025-178493
Malicious code in hugo-wavefunction-dotenv-parse-variables-parallax npm...
EUVD-2025-179904
Malicious code in callback-parallax-slides-metabolomics npm...