4877 matches found
Malicious code in react-ob1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a109565fb7408913332a6480b54b10415a8287a3bb3ee6c8216a89ce0d25cd6a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-728 Malicious code in react-miscrosoft-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cf09eb4d9a3bff918c5d70b7319f6734bad6fbc2d4c6975462602b53ab6f54e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-726 Malicious code in react-microsoft-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ebbff8e8d6bc53549d890642e4b9625f2177839bdd586402e12331a2d22f9a6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in react-miscosoft-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83e19123a91cb7a1bd1e4a47d412e34e2235998c8bab60e33662f0fea42e1734 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in react-blue-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5108d06d664409328068b5859c46add10bb08c95d223960e1bf8910d507f5466 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-727 Malicious code in react-miscosoft-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83e19123a91cb7a1bd1e4a47d412e34e2235998c8bab60e33662f0fea42e1734 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in react-miscrosoft-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cf09eb4d9a3bff918c5d70b7319f6734bad6fbc2d4c6975462602b53ab6f54e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in react-microsoft-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ebbff8e8d6bc53549d890642e4b9625f2177839bdd586402e12331a2d22f9a6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-722 Malicious code in react-0b1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 538e1737bd9d1630e96258cbe6394221a1b70f79545cc2901cc29632155e4aa2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-729 Malicious code in react-ob1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a109565fb7408913332a6480b54b10415a8287a3bb3ee6c8216a89ce0d25cd6a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-724 Malicious code in react-blue-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5108d06d664409328068b5859c46add10bb08c95d223960e1bf8910d507f5466 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-1311 Malicious code in suncorp-styleguide-react-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b6a39ac171632a984b8ac8c3e53ab935e47753ac7e0df7161daa7bc23f8e08d The OpenSSF Package Analysis project identified 'suncorp-styleguide-react-components' @ 102.0.0 npm as malicious. It is considered malicious...
Malicious code in suncorp-styleguide-react-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b6a39ac171632a984b8ac8c3e53ab935e47753ac7e0df7161daa7bc23f8e08d The OpenSSF Package Analysis project identified 'suncorp-styleguide-react-components' @ 102.0.0 npm as malicious. It is considered malicious...
Malicious code in react-orange-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 13d1f91905a22633d21b8801128e83148b0f22c92c6b63bfb66fb3a7981734d3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in react-test-renderer-17 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44a1a6575888ff4c59c07150c3211aa61af227fb9d17025b72af93ba65153098 The OpenSSF Package Analysis project identified 'react-test-renderer-17' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
MAL-2023-1282 Malicious code in react-test-renderer-17 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44a1a6575888ff4c59c07150c3211aa61af227fb9d17025b72af93ba65153098 The OpenSSF Package Analysis project identified 'react-test-renderer-17' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
HTML Injection
matrix-react-sdk is vulnerable to HTML Injection. The vulnerability exists in the bodyToHtml function of HtmlUtils.tsx because it does not escape the plainBody parameter of the highlighter attribute, which allows an attacker to inject and execute malicious plaintext messages with HTML payloads...
MAL-2023-1279 Malicious code in react-div-100vh-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9b9718c1f5170d44298bb0ef93d114e752ea42231e924e5c895add2f21e3c18a The OpenSSF Package Analysis project identified 'react-div-100vh-test' @ 9.0.0 npm as malicious. It is considered malicious because: - The packa...
Malicious code in react-div-100vh-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9b9718c1f5170d44298bb0ef93d114e752ea42231e924e5c895add2f21e3c18a The OpenSSF Package Analysis project identified 'react-div-100vh-test' @ 9.0.0 npm as malicious. It is considered malicious because: - The packa...
SUSE CVE-2023-30609
matrix-react-sdk is a react-based SDK for inserting a Matrix chat/VoIP client into a web page. Prior to version 3.71.0, plain text messages containing HTML tags are rendered as HTML in the search results. To exploit this, an attacker needs to trick a user into searching for a specific message...