10 matches found
@knocklabs/client (>=0.21.6 <=0.21.13), @knocklabs/expo (>=0.5.0 <=0.6.7) +8 more potentially affected by CVE-2026-32689 via phoenix (>=1.8.0 <=1.8.5)
phoenix NPM version =1.8.0, =0.21.6, =0.5.0, =0.1.0, =0.1.1, =0.1.1, =0.0.2, =0.0.1, =0.0.2, =0.0.1, =2.1.8, =2.4.0 Source cves: CVE-2026-32689 Source advisory: SNYK:JS-PHOENIX-16425773...
Malicious code in @emerald-react/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2815333a388587f547d8608d454b6a1d515deb92df2ed79d8c77a7fc4d26e1c5 The package @emerald-react/core was found to contain malicious code...
MAL-2026-1604 Malicious code in @emerald-react/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2815333a388587f547d8608d454b6a1d515deb92df2ed79d8c77a7fc4d26e1c5 The package @emerald-react/core was found to contain malicious code...
MAL-2026-1230 Malicious code in @schedaero/react-core (npm)
Multiple suspicious behaviors: suspicious URL, data exfiltration, process termination, preinstall script, and few published versions. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9a3637e4c85401af7944fe82cfd79a91d69797ef89cf50334fc3e5bf4fac0e6 The package...
Malicious code in @schedaero/react-core (npm)
Multiple suspicious behaviors: suspicious URL, data exfiltration, process termination, preinstall script, and few published versions. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9a3637e4c85401af7944fe82cfd79a91d69797ef89cf50334fc3e5bf4fac0e6 The package...
MAL-2025-3303 Malicious code in @sas-dvr/internal-va-react-core (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in @sas-dvr/internal-va-react-core (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2023-8079 Malicious code in web3-react-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 00a1d6d62c15a7112e41d1d0c71d79e1698232823cc6c88f392bbef2e2a772ec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in web3-react-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 00a1d6d62c15a7112e41d1d0c71d79e1698232823cc6c88f392bbef2e2a772ec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4681 Malicious code in monday-ui-react-core-vibe (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 02b37ccaa09f22f434d94db6284f97abe23da00075ed3dd7d95353fe6d55b42b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...