Lucene search
K

625 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/21 6:24 a.m.4 views

Malicious code in eslint-plugin-prettier (npm)

This package installs a windows based malware file node-gyp.dll via install.js...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/07/21 6:24 a.m.32 views

MAL-2025-6023 Malicious code in eslint-plugin-prettier (npm)

This package installs a windows based malware file node-gyp.dll via install.js...

7.1AI score
Exploits0References1
OSV
OSV
added 2025/07/21 6:24 a.m.129 views

MAL-2025-6022 Malicious code in eslint-config-prettier (npm)

This package installs a windows based malware file node-gyp.dll via install.js...

7.1AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/21 12:8 a.m.6 views

CVE-2025-54313

A flaw was found in eslint-config-prettier. An affected version contains embedded malicious code that executes an install.js file during package installation. This script launches the node-gyp.dll malware on Windows systems, allowing a remote attacker to execute arbitrary code. Mitigation...

7.5CVSS7AI score0.04146EPSS
Exploits2References10
OSV
OSV
added 2025/07/19 6:30 p.m.6 views

GHSA-F29H-PXVX-F335 eslint-config-prettier, eslint-plugin-prettier, synckit, @pkgr/core, napi-postinstall have embedded malicious code

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS6.5AI score0.04146EPSS
Exploits2References19
NVD
NVD
added 2025/07/19 5:15 p.m.13 views

CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS0.04146EPSS
Exploits2References10
VulnCheck KEV
VulnCheck KEV
added 2025/07/19 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS5.9AI score0.04146EPSS
In wildExploits2References7
Vulnrichment
Vulnrichment
added 2025/07/19 12:0 a.m.9 views

CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS6.6AI score0.04146EPSS
Exploits2References7
Cvelist
Cvelist
added 2025/07/19 12:0 a.m.12 views

CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS0.04146EPSS
Exploits2References7
CNNVD
CNNVD
added 2025/07/19 12:0 a.m.5 views

eslint-config-prettier 安全漏洞

eslint-config-prettier is a Prettier open source application. A security vulnerability exists in eslint-config-prettier version 8.10.1, 9.1.1, 10.1.6, and 10.1.7, which stems from embedded malicious code that could lead to a supply chain attack...

7.5CVSS6.2AI score0.04146EPSS
Exploits2References8
OSV
OSV
added 2025/07/19 12:0 a.m.4 views

CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS6AI score0.04146EPSS
Exploits2References12
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/15 12:57 a.m.4 views

Malicious code in js-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c09298c7090e31085be2d84c4a20270bccb912a70ec51629645b45d635b361b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/07/15 12:57 a.m.6 views

MAL-2025-5926 Malicious code in js-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c09298c7090e31085be2d84c4a20270bccb912a70ec51629645b45d635b361b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2025/06/30 9:13 a.m.3 views

MAL-2025-5509 Malicious code in node-pretier (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7de0fd2da3988016711f12d165ab5e9d22cf17a815aaeed0966944b96151dda5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/06/18 10:41 a.m.2 views

Malicious code in spotless-prettier (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2025/06/18 10:41 a.m.1 views

MAL-2025-5089 Malicious code in spotless-prettier (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSV
added 2025/06/04 12:12 a.m.7 views

MAL-2025-4648 Malicious code in node-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 843fe1d3338e398ebc485508d20455b921ed8e3cbfcd3fd1140d4aae32d34109 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/06/04 12:12 a.m.6 views

Malicious code in node-prettier (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 843fe1d3338e398ebc485508d20455b921ed8e3cbfcd3fd1140d4aae32d34109 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/05/23 1:38 a.m.5 views

Malicious code in prettier-config-rth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3baf2a5f3efec1eace5c6720887b40bd8a5019168357ff749e8eef0b03c4b2a8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/04/23 3:39 p.m.6 views

Malicious code in @saferpay/prettier-config (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
Rows per page
Query Builder