4 matches found
cli-form (>=0.0.0 <=0.1.4), cli-qa (>=0.0.0 <=2.3.0) +1 more potentially affected by unknown CVE via read-cli-input (=1.0.1)
read-cli-input NPM version =1.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on read-cli-input and may be impacted: - cli-form =0.0.0, =0.0.0, =0.0.0, =1.3.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-31878...
cli-form (>=0.0.0 <=0.1.4), cli-qa (>=0.0.0 <=2.3.0) +2 more potentially affected by unknown CVE via on-key-press (=0.0.0)
on-key-press NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on on-key-press and may be impacted: - cli-form =0.0.0, =0.0.0, =0.0.0, =0.0.0, =1.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-28228...
Malicious code in read-cli-input (npm)
The package read-cli-input was found to contain malicious code...
MAL-2025-31878 Malicious code in read-cli-input (npm)
The package read-cli-input was found to contain malicious code...