@dwimm/client-web (>=0.0.1 <=0.0.2-86), @element-hq/web-shared-components (>=0.0.0-test.6 <=0.0.2) +26 more potentially affected by CVE-2025-57354 via counterpart (>=0.16.10 <=0.18.6)

counterpart NPM version =0.16.10, =0.0.1, =0.0.0-test.6, =1.0.0, =2.10.1, =0.0.1, =0.7.1, =0.0.1, =0.1.8, =2.3.0, =3.114.0-rc.0 and more Source cves: CVE-2025-57354 Source advisory: SNYK:JS-COUNTERPART-13110034...

MAL-2025-47578 Malicious code in altoqitec-design-system-react (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in altoqitec-login-integrado-react (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 36e8fa2ecf486300b0bbfb8d83e585407f8717849e9e2b0c12da3147caca1d87 The OpenSSF Package Analysis project identified...

MAL-2025-47579 Malicious code in altoqitec-login-integrado-react (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 36e8fa2ecf486300b0bbfb8d83e585407f8717849e9e2b0c12da3147caca1d87 The OpenSSF Package Analysis project identified...

MAL-2025-47493 Malicious code in react-fs-cofnig (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7593b42f32f81d9208bb076f6c58f08dba424e33537c10569716c1561838c360 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-fs-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af2d796ee4de90749abff951a8c96883e5fcef54fb5416b3f60a3c031fd093a1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-fs-cofnig (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7593b42f32f81d9208bb076f6c58f08dba424e33537c10569716c1561838c360 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview react-thunk-log is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview react-fs-config is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious Package

Overview react-fs-cofnig is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2025-47495 Malicious code in react-thunk-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 929d9268bc92055751c7f10bae27b10942586f07c6fb81b6740905a7b067604d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47494 Malicious code in react-fs-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af2d796ee4de90749abff951a8c96883e5fcef54fb5416b3f60a3c031fd093a1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-thunk-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 929d9268bc92055751c7f10bae27b10942586f07c6fb81b6740905a7b067604d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47492 Malicious code in react-device-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 113702b97f378bfde6af287d00821b1e3ebec6cfa164e3d263f57632210869c8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview react-device-plugin is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in react-device-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 113702b97f378bfde6af287d00821b1e3ebec6cfa164e3d263f57632210869c8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in mstate-dev-react (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 014addfef55f28c8297c28c565e3a13e01c74ef273175eb8c2389b4e41921e0a Any computer that has this package installed or running should be considered fully compromised. All...

Malicious code in @tnf-dev/react (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da4d6867e6189f0175e6f56e18ff4291470344b5f188c83b62ca56759287e142 Any computer that has this package installed or running should be considered fully compromised. All...

MAL-2025-47330 Malicious code in mstate-dev-react (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 014addfef55f28c8297c28c565e3a13e01c74ef273175eb8c2389b4e41921e0a Any computer that has this package installed or running should be considered fully compromised. All...

MAL-2025-47331 Malicious code in mstate-react (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 997c10662d47fa55ca8cd4db612274bf4d589c7d82d079b48fae3261bb5c65a7 Any computer that has this package installed or running should be considered fully compromised. All...