625 matches found
CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday added four security flaws to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows - CVE-2025-68645 CVSS score: 8.8 - A PHP remote fi...
CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-31125link is external Vite Vitejs Improper Access Control Vulnerability CVE-2025-34026link is external Versa Concerto Improper Authentication Vulnerabilit...
Prettier eslint-config-prettier Embedded Malicious Code Vulnerability
Prettier eslint-config-prettier contains an embedded malicious code vulnerability. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...
EUVD-2025-199396
Malicious code in @voiceflow/prettier-config npm...
MAL-2025-191366 Malicious code in @voiceflow/prettier-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d559f73440d8fdf3f6f155244ce54b5d8d829700d5780778a26f0ac94fb5b59e The package @voiceflow/prettier-config was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-176438
Malicious code in selenology-zenobia-loglevel-prettier-stylelint npm...
EUVD-2025-177079
Malicious code in prettier-json-publish-quito npm...
EUVD-2025-180501
Malicious code in adonis-prettier-stylelint-ignite-magellan npm...
EUVD-2025-177077
Malicious code in prettier-meteor-mineralogy-vuepress npm...
EUVD-2025-177067
Malicious code in prettier-plugin-markdown-tool-sociobiology-css-minimizer-webpack-plugin npm...
EUVD-2025-176087
Malicious code in sync-vega-apex-prettier-plugin-markdown npm...
Malicious code in prettier-oberon-unuk-semantic-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1416ff5d8384ecbdb89cc7b68eabd1e69af5e47c782685dded612d683ca51e37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177068
Malicious code in prettier-plugin-markdown-toml-reveal-md-event npm...
EUVD-2025-177072
Malicious code in prettier-plugin-markdown-joviology-style-loader-zooarchaeology npm...
EUVD-2025-177074
Malicious code in prettier-plugin-markdown-aquarius-colors-antares npm...
EUVD-2025-180164
Malicious code in babel-baryon-magellan-prettier-plugin-markdown npm...
EUVD-2025-175760
Malicious code in ursa-protoplanetarydisk-electron-prettier-plugin-markdown npm...
EUVD-2025-178187
Malicious code in kinetic-redshift-pino-pretty-prettier-plugin-markdown npm...
EUVD-2025-178181
Malicious code in koa-prettier-stylelint-link-google npm...
EUVD-2025-176773
Malicious code in redgiant-heliophysics-protoplanetarydisk-prettier-stylelint npm...