218 matches found
@slidev-react/cli (>=0.4.6 <=0.4.14), @slidev-react/node (>=0.4.6 <=0.4.14) potentially affected by CVE-2026-39365 via vite-plus (=0.1.11)
vite-plus NPM version =0.1.11 is affected by a known vulnerability. The following packages have a transitive dependency on vite-plus and may be impacted: - @slidev-react/cli =0.4.6, =0.4.6, =0.4.14 Source cves: CVE-2026-39365 Source advisory: SNYK:JS-VITEPLUS-15922214...
@slidev-react/cli (>=0.4.6 <=0.4.14), @slidev-react/node (>=0.4.6 <=0.4.14) potentially affected by CVE-2026-39364 via vite-plus (=0.1.11)
vite-plus NPM version =0.1.11 is affected by a known vulnerability. The following packages have a transitive dependency on vite-plus and may be impacted: - @slidev-react/cli =0.4.6, =0.4.6, =0.4.14 Source cves: CVE-2026-39364 Source advisory: SNYK:JS-VITEPLUS-15922246...
@slidev-react/cli (>=0.4.6 <=0.4.14), @slidev-react/node (>=0.4.6 <=0.4.14) potentially affected by CVE-2026-39363 via vite-plus (=0.1.11)
vite-plus NPM version =0.1.11 is affected by a known vulnerability. The following packages have a transitive dependency on vite-plus and may be impacted: - @slidev-react/cli =0.4.6, =0.4.6, =0.4.14 Source cves: CVE-2026-39363 Source advisory: SNYK:JS-VITEPLUS-15922243...
@bloggrify/bento (>=0.9.5 <=1.0.0), @bloggrify/core (>=1.6.0 <=2.0.2) +29 more potentially affected by CVE-2025-69874 via nanotar (=0.1.1)
nanotar NPM version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on nanotar and may be impacted: - @bloggrify/bento =0.9.5, =1.6.0, =1.3.1, =1.2.2, =0.1.2, =51.0.1, =0.3.14, =9.8.3, =1.12.0-rc.5, =0.0.0, =1.1.1, =0.50.0, =0.50.0, =51.0.2 and mor...
EUVD-2025-177225
Malicious code in phenomic-paleoclimatology-slidev-websockets npm...
EUVD-2025-175889
Malicious code in transport-registry-slidev-upgrade npm...
EUVD-2025-180048
Malicious code in biosignature-spawn-slidev-envconfig npm...
EUVD-2025-178086
Malicious code in link-slidev-dione-markdown-pdf npm...
EUVD-2025-180371
Malicious code in aquarius-slidev-equinox-procyon npm...
EUVD-2025-179272
Malicious code in dorado-slidev-hyperion-avior npm...
EUVD-2025-178390
Malicious code in inquirer-technosignature-slidev-sagitta npm...
EUVD-2025-176342
Malicious code in slidev-airbnb-phoebe-library npm...
EUVD-2025-179063
Malicious code in eris-slidev-iota-css-minimizer-webpack-plugin npm...
Malicious code in transport-registry-slidev-upgrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2660007516964d3692e02aabbe87172c23d0b68035f75d6dfe2d597e17f4948a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in yonder-sedna-innercore-slidev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 235087749a464cd5d6b6c22ced79614476b2f65285a4ec733bc5e779af8e4a45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-180287
Malicious code in astroinformatics-ethology-venus-slidev npm...
EUVD-2025-176427
Malicious code in sequelize-slidev-forever-rollup npm...
EUVD-2025-175925
Malicious code in toml-slidev-nebula-antares npm...
EUVD-2025-176684
Malicious code in request-slidev-jest-repository npm...
EUVD-2025-176335
Malicious code in slidev-scorpius-dotenv-aldebaran npm...