225 matches found
ROOT-APP-NPM-CVE-2022-0144 CVE-2022-0144 in @rootio/shelljs - Patched by Root
Root has patched CVE-2022-0144 in the @rootio/shelljs package for Root:npm. Multiple fixed versions available...
ROOT-APP-NPM-GHSA-64G7-MVW6-V9QJ GHSA-64g7-mvw6-v9qj in @rootio/shelljs - Patched by Root
Root has patched GHSA-64g7-mvw6-v9qj in the @rootio/shelljs package for Root:npm. Multiple fixed versions available...
CVE-2026-15033
A flaw has been found in christopherthielen check-peer-dependencies up to 4.3.4. Affected by this vulnerability is the function shelljs.exec of the file dist/packageUtils.js of the component peerDependencies. This manipulation causes os command injection. The attack may be initiated remotely. The...
CVE-2026-15033
Technical details (affected product/version, root cause, exploit details, or remediation) are not publicly provided in the supplied documents; monitor for updates.
CVE-2026-15033 christopherthielen check-peer-dependencies peerDependencies packageUtils.js shelljs.exec os command injection
A flaw has been found in christopherthielen check-peer-dependencies up to 4.3.4. Affected by this vulnerability is the function shelljs.exec of the file dist/packageUtils.js of the component peerDependencies. This manipulation causes os command injection. The attack may be initiated remotely. The...
EUVD-2026-42234
A flaw has been found in christopherthielen check-peer-dependencies up to 4.3.4. Affected by this vulnerability is the function shelljs.exec of the file dist/packageUtils.js of the component peerDependencies. This manipulation causes os command injection. The attack may be initiated remotely. The...
Astra Linux – Vulnerability in node-shelljs
ShellJS is vulnerable to improper privilege management...
EUVD-2025-175830
Malicious code in umbriel-gulp-sqlite-shelljs npm...
EUVD-2025-176398
Malicious code in shelljs-zephyr-ariel-brane npm...
EUVD-2025-177377
Malicious code in paleoceanography-shelljs-umbriel-galaxy npm...
Malicious code in ini-barnard-juno-shelljs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3dbf5daee4a63bb5da7d2edd25d7ce8d9d7bc3d058330917f28aa7374a6ef12 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-180126
Malicious code in baryon-sublimation-apollo-shelljs npm...
EUVD-2025-177275
Malicious code in pegasus-shelljs-public-seismology npm...
EUVD-2025-179335
Malicious code in deneb-juno-telesto-shelljs npm...
EUVD-2025-176402
Malicious code in shelljs-biotechnology-leda-europa npm...
EUVD-2025-176553
Malicious code in sagitta-shelljs-halley-grunt npm...
EUVD-2025-175608
Malicious code in webdriver-mocha-apollo-server-shelljs npm...
EUVD-2025-179809
Malicious code in ceres-petrology-callisto-shelljs npm...
EUVD-2025-175646
Malicious code in wasat-carina-shelljs-sqlite npm...
Malicious code in umbriel-gulp-sqlite-shelljs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a191c64e27e6c7846f4fb786da99ba6ab75ab274a4df6b2b6334a001d7cd9cbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...