7 matches found
Malicious Package
Overview strapi-plugin-cms-tools is a malicious package. This package contains malicious code that conceals a command-and-control agent and credential harvester. A malicious actor published a coordinated campaign of thirty-six packages disguised as community Strapi CMS plugins. These packages...
@nativescript/plugin-tools (>=5.5.0 <=5.5.3), @nstudio/xplat (>=20.0.0 <=20.0.3) potentially affected by unknown CVE via @nstudio/focus (>=20.0.0 <=20.0.3)
@nstudio/focus NPM version =20.0.0, =5.5.0, =20.0.0, =20.0.3 Source cves: unknown CVE Source advisory: SNYK:JS-NSTUDIOFOCUS-12744498...
@codingducksrl/nx-duck (>=0.4.1 <=0.4.6), @nativescript/plugin-tools (>=5.5.0 <=5.5.3) +11 more potentially affected by CVE-2025-10894 via @nx/node (>=20.0.0-beta.0 <=20.9.0-canary.20250415-bc685ce)
@nx/node NPM version =20.0.0-beta.0, =0.4.1, =5.5.0, =4.0.0, =2.12.0, =20.0.0-beta.0, =20.0.0-beta.0, =20.0.0-beta.0, =20.0.0, =20.0.0, =0.2.0, =20.0.0, =20.2.1-dev.3 - @terrxo/nx-cloudflare =4.0.1 - @ziacik/azure-func =4.0.0 Source cves: CVE-2025-10894 Source advisory: SNYK:JS-NXNODE-12205640...
Malicious code in vite-plugin-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 56ca9dc73ad1724cba2621975411cb4f207c06e1526426ef7e257b805ac42800 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3591 Malicious code in vite-plugin-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 56ca9dc73ad1724cba2621975411cb4f207c06e1526426ef7e257b805ac42800 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Fedora: Security Advisory for maven-plugin-tools (FEDORA-2024-129d8ca6fc)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 40 Update: maven-plugin-tools-3.9.0-6.fc40
The Maven Plugin Tools contains the necessary tools to be able to produce Mav en Plugins in a variety of languages...