128 matches found
Malicious code in react-prop (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6aeb7200f91cbea0037b45eb8c0fde13aaa99f73bf5dc9fbf18eb696c70516d1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview react-prop is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
MAL-2025-47203 Malicious code in react-prop (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6aeb7200f91cbea0037b45eb8c0fde13aaa99f73bf5dc9fbf18eb696c70516d1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-27365 Malicious code in new-prop (npm)
The package new-prop was found to contain malicious code...
Malicious code in new-prop (npm)
The package new-prop was found to contain malicious code...
Malicious code in prop-tyeps (npm)
The package prop-tyeps was found to contain malicious code...
Malicious code in prop-ytpes (npm)
The package prop-ytpes was found to contain malicious code...
MAL-2025-30746 Malicious code in prop-ytpes (npm)
The package prop-ytpes was found to contain malicious code...
attr (>=0.0.0 <=0.0.1), door (>=0.0.5 <=0.0.6) +3 more potentially affected by unknown CVE via new-prop (=2.0.0)
new-prop NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on new-prop and may be impacted: - attr =0.0.0, =0.0.5, =0.0.7, =0.0.0, =0.0.0, =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-27365...
MAL-2025-30745 Malicious code in prop-tyeps (npm)
The package prop-tyeps was found to contain malicious code...
Malicious Package
Overview airbnb-prop is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...
Malicious code in airbnb-prop (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8aacf36d756bbb283dfe3340b8b1a4f2e5d7f9d2b0d662eba57f8e675728055e Any computer that has this package installed or running should be considered...
MAL-2025-6229 Malicious code in airbnb-prop (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8aacf36d756bbb283dfe3340b8b1a4f2e5d7f9d2b0d662eba57f8e675728055e Any computer that has this package installed or running should be considered...
CVE-2025-1461
CVE-2025-1461 affects Vuetify’s VCalendar eventMoreText prop. Affected: Vuetify >=2.0.0 and
CVE-2023-21025
In ufdtlocalfixupprop of ufdtoverlay.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...
Mattermost Playbooks fails to properly validate the props used by the RetrospectivePost custom post type
Mattermost versions 10.4.x = 10.4.2, 10.5.x = 10.5.0, 9.11.x = 9.11.10 fail to properly validate the props used by the RetrospectivePost custom post type in the Playbooks plugin, which allows an attacker to create a specially crafted post with maliciously crafted props and cause a denial of servi...
CVE-2022-36010
This library allows strings to be parsed as functions and stored as a specialized component, JsonFunctionValue. To do this, Javascript's eval function is used to execute strings that begin with "function" as Javascript. This unfortunately could allow arbitrary code to be executed if it exists as ...
CVE-2024-31179
Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of13::TableFeaturePropInstruction::unpack. This issue affects libfluid: 0.1.0...
CVE-2024-31178
Out-of-bounds Read vulnerability in Open Networking Foundation ONF libfluid libfluidmsg module. This vulnerability is associated with program routine fluidmsg::of13::TableFeaturePropNextTables::unpack. This issue affects libfluid: 0.1.0...
CVE-2022-48843
...