4 matches found
http-run (=0.0.1) potentially affected by unknown CVE via requet (=0.0.1-security)
requet NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on requet and may be impacted: - http-run =0.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-32114...
MAL-2025-32114 Malicious code in requet (npm)
The package requet was found to contain malicious code...
http-run (=0.0.1) potentially affected by unknown CVE via requet (=0.0.1-security)
requet NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on requet and may be impacted: - http-run =0.0.1 Source cves: unknown CVE Source advisory: OSV:GHSA-H44F-769Q-J6PX...
Malicious Package in requet
All versions of requet typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the process wa...