Lucene search
K

42 matches found

Snyk
Snyk
added 2025/11/30 1:14 p.m.4 views

Malicious Package

Overview react-svg-fill is a malicious package. This package contains malicious code associated with a social engineering campaign called "Contagious Interview." The attackers target developers through fake job interviews or coding test assignments that require the installation of this package...

9.8CVSS7.2AI score
Exploits0References3
Snyk
Snyk
added 2025/11/30 1:14 p.m.4 views

Malicious Package

Overview react-svg-supporter is a malicious package. This package contains malicious code associated with a social engineering campaign called "Contagious Interview." The attackers target developers through fake job interviews or coding test assignments that require the installation of this...

9.8CVSS7.2AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/19 4:27 a.m.8 views

Malicious code in react-svg-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9b392459196e5602d6e40cd38445d10e87e49d85b53b966aee554dd758fc1bd The package react-svg-module was found to contain malicious code. Source: ghsa-malware dd046bd4ddd4da53330303e0802201fda828bce7e1a21524aa7fc0da1fed95...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/11/19 4:27 a.m.2 views

MAL-2025-190571 Malicious code in react-svg-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e399f2b08fcb5a17dce3bb49a4f5dbeec6d8c56b34dab5586e8a84c5232d08 The package react-svg-helper was found to contain malicious code. Source: ghsa-malware f872307ebcfe0abab5b4fb796f5d770fd3678292ff059768bc62144d97fe03...

6.8AI score
Exploits0References1
EUVD
EUVD
added 2025/11/19 4:27 a.m.4 views

EUVD-2025-198131

Malicious code in react-svg-module npm...

6.6AI score
Exploits0References1
EUVD
EUVD
added 2025/11/19 4:27 a.m.4 views

EUVD-2025-198132

Malicious code in react-svg-helper npm...

6.6AI score
Exploits0References1
Snyk
Snyk
added 2025/11/19 4:27 a.m.3 views

Malicious Package

Overview react-svg-module is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/11/19 4:27 a.m.5 views

MAL-2025-190572 Malicious code in react-svg-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9b392459196e5602d6e40cd38445d10e87e49d85b53b966aee554dd758fc1bd The package react-svg-module was found to contain malicious code. Source: ghsa-malware dd046bd4ddd4da53330303e0802201fda828bce7e1a21524aa7fc0da1fed95...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/19 4:27 a.m.6 views

Malicious code in react-svg-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e399f2b08fcb5a17dce3bb49a4f5dbeec6d8c56b34dab5586e8a84c5232d08 The package react-svg-helper was found to contain malicious code. Source: ghsa-malware f872307ebcfe0abab5b4fb796f5d770fd3678292ff059768bc62144d97fe03...

6.9AI score
Exploits0References1
Snyk
Snyk
added 2025/11/19 4:27 a.m.2 views

Malicious Package

Overview react-svg-helper is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/29 10:51 p.m.4 views

Malicious Package

Overview inline-react-svg is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
EUVD
EUVD
added 2025/10/29 10:51 p.m.4 views

EUVD-2025-36777

Malicious code in inline-react-svg npm...

6.6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/29 10:51 p.m.8 views

Malicious code in inline-react-svg (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c39f65737779d34f941dcee3ee4e332a0ca54196d2cbc4e848e57e20ecf85893 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References2
OSV
OSV
added 2025/10/29 10:51 p.m.4 views

MAL-2025-49011 Malicious code in inline-react-svg (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c39f65737779d34f941dcee3ee4e332a0ca54196d2cbc4e848e57e20ecf85893 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References2
OSV
OSV
added 2025/07/01 6:14 a.m.5 views

MAL-2025-5517 Malicious code in react-svg-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d1b4540b7accc26da839119cb9cee8be93e168c74f00d68eb96e60241796fbf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/01 6:14 a.m.6 views

Malicious code in react-svg-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d1b4540b7accc26da839119cb9cee8be93e168c74f00d68eb96e60241796fbf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/06/18 10:3 a.m.4 views

MAL-2025-5167 Malicious code in react-svg-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af2a1717363aad3bb129687fc2526ded4d96a8d7e578862b6d400cf5864e1985 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/06/18 10:3 a.m.6 views

Malicious code in react-svg-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af2a1717363aad3bb129687fc2526ded4d96a8d7e578862b6d400cf5864e1985 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2019/05/31 11:47 p.m.9 views

GHSA-8XQR-4CPM-WX7G Cross-Site Scripting in react-svg

Versions of react-svg before 2.2.18 are vulnerable to cross-site scripting xss. This is due to the fact that scripts found in SVG files are run by default. Recommendation Update to version 2.2.18 or later...

6.5AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/05/31 11:47 p.m.41 views

Cross-Site Scripting in react-svg

Versions of react-svg before 2.2.18 are vulnerable to cross-site scripting xss. This is due to the fact that scripts found in SVG files are run by default. Recommendation Update to version 2.2.18 or later...

2.5AI score
Exploits0References4Affected Software1
Rows per page
Query Builder