625 matches found
Malicious code in eslint-plugin-prettier (npm)
This package installs a windows based malware file node-gyp.dll via install.js...
MAL-2025-6023 Malicious code in eslint-plugin-prettier (npm)
This package installs a windows based malware file node-gyp.dll via install.js...
MAL-2025-6022 Malicious code in eslint-config-prettier (npm)
This package installs a windows based malware file node-gyp.dll via install.js...
CVE-2025-54313
A flaw was found in eslint-config-prettier. An affected version contains embedded malicious code that executes an install.js file during package installation. This script launches the node-gyp.dll malware on Windows systems, allowing a remote attacker to execute arbitrary code. Mitigation...
GHSA-F29H-PXVX-F335 eslint-config-prettier, eslint-plugin-prettier, synckit, @pkgr/core, napi-postinstall have embedded malicious code
eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...
CVE-2025-54313
eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...
VulnCheck KEV: CVE-2025-54313
eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...
CVE-2025-54313
eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...
CVE-2025-54313
eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...
eslint-config-prettier 安全漏洞
eslint-config-prettier is a Prettier open source application. A security vulnerability exists in eslint-config-prettier version 8.10.1, 9.1.1, 10.1.6, and 10.1.7, which stems from embedded malicious code that could lead to a supply chain attack...
CVE-2025-54313
eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...
Malicious code in js-prettier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c09298c7090e31085be2d84c4a20270bccb912a70ec51629645b45d635b361b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5926 Malicious code in js-prettier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c09298c7090e31085be2d84c4a20270bccb912a70ec51629645b45d635b361b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5509 Malicious code in node-pretier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7de0fd2da3988016711f12d165ab5e9d22cf17a815aaeed0966944b96151dda5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in spotless-prettier (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-5089 Malicious code in spotless-prettier (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-4648 Malicious code in node-prettier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 843fe1d3338e398ebc485508d20455b921ed8e3cbfcd3fd1140d4aae32d34109 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in node-prettier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 843fe1d3338e398ebc485508d20455b921ed8e3cbfcd3fd1140d4aae32d34109 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in prettier-config-rth (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3baf2a5f3efec1eace5c6720887b40bd8a5019168357ff749e8eef0b03c4b2a8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @saferpay/prettier-config (npm)
--- -= Per source details. Do not edit below this line.=-...