@digifox/providers (=5.0.3), @wowpay/react-native-sdk (>=1.0.3 <=1.0.21) +3 more potentially affected by unknown CVE via react-native-websocket (=1.0.2)

react-native-websocket NPM version =1.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on react-native-websocket and may be impacted: - @digifox/providers =5.0.3 - @wowpay/react-native-sdk =1.0.3, =1.0.0, =1.0.0, =1.0.0, =1.0.2 Source cves: unknown CVE...

MAL-2025-25489 Malicious code in localz-lastmile-react-native-sdk (npm)

The package localz-lastmile-react-native-sdk was found to contain malicious code...

Malicious code in localz-lastmile-react-native-sdk (npm)

The package localz-lastmile-react-native-sdk was found to contain malicious code...

Malicious code in localz-react-native-sdk (npm)

The package localz-react-native-sdk was found to contain malicious code...

Malicious code in react-native-data-sdk (npm)

The package react-native-data-sdk was found to contain malicious code...

MAL-2024-2794 Malicious code in onewelcome-react-native-sdk (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in onewelcome-react-native-sdk (npm)

--- -= Per source details. Do not edit below this line.=-...