4880 matches found
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
EUVD-2025-198974
Malicious code in @ensdomains/ensjs-react npm...
Malicious code in @ensdomains/ensjs-react (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f73575f4b186fbdf20e0a27b2bd9e1fae8839ea9f17e4648c96e6d4bf4f96da The package @ensdomains/ensjs-react was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190934 Malicious code in @ensdomains/ensjs-react (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f73575f4b186fbdf20e0a27b2bd9e1fae8839ea9f17e4648c96e6d4bf4f96da The package @ensdomains/ensjs-react was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198911
Malicious code in @seung-ju/react-native-action-sheet npm...
Malicious code in @posthog/react-rrweb-player (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7639d9bf4c377c1cb1bd2839d92cdc3ebdab0abb25b93f6b79914fc02634c2b4 The package @posthog/react-rrweb-player was found to contain malicious code. Source: google-open-source-security...
EUVD-2025-198935
Malicious code in @posthog/react-rrweb-player npm...
EUVD-2025-198910
Malicious code in @zapier/ai-actions-react npm...
Malicious code in @seung-ju/react-native-action-sheet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a093775c06aa43c37f1449879903040ac8d4670967b0fc9931be9fc842d3c72 The package @seung-ju/react-native-action-sheet was found to contain malicious code. Source: ghsa-malware...
Malicious code in posthog-react-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdc429049d0797390f57bc821cabd2d46fad88c5363136fc96bab4b5497000fe The package posthog-react-native was found to contain malicious code. Source: google-open-source-security...
EUVD-2025-198901
Malicious code in posthog-react-native npm...
MAL-2025-190926 Malicious code in posthog-react-native (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdc429049d0797390f57bc821cabd2d46fad88c5363136fc96bab4b5497000fe The package posthog-react-native was found to contain malicious code. Source: google-open-source-security...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
react-native-modest-storage (=2.0.0) potentially affected by unknown CVE via @tiaanduplessis/json (=2.0.1)
@tiaanduplessis/json NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @tiaanduplessis/json and may be impacted: - react-native-modest-storage =2.0.0 Source cves: unknown CVE Source advisory: SNYK:JS-TIAANDUPLESSISJSON-14103546...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
financelabsutilities (>=0.0.8 <=0.0.10) potentially affected by unknown CVE via react-hook-form-persist (=3.0.0)
react-hook-form-persist NPM version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on react-hook-form-persist and may be impacted: - financelabsutilities =0.0.8, =0.0.10 Source cves: unknown CVE Source advisory: SNYK:JS-REACTHOOKFORMPERSIST-141036...