snsadmin (=1.0.0) potentially affected by unknown CVE via soket.io (=0.0.1-security)

soket.io NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on soket.io and may be impacted: - snsadmin =1.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-33611...

Malicious code in soket.io (npm)

The package soket.io was found to contain malicious code...

snsadmin (=1.0.0) potentially affected by unknown CVE via soket.io (=0.0.1-security)

soket.io NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on soket.io and may be impacted: - snsadmin =1.0.0 Source cves: unknown CVE Source advisory: OSV:GHSA-WP2P-Q35G-3RJJ...

GHSA-WP2P-Q35G-3RJJ Malicious Package in soket.io

All versions of soket.io are considered malicious. The package is malware designed to take advantage of users making a mistake when typing the name of a module to install. When executed, the package calls home to a Command and Control server to execute arbitrary commands. Recommendation This...

Malicious Package in soket.io

All versions of soket.io are considered malicious. The package is malware designed to take advantage of users making a mistake when typing the name of a module to install. When executed, the package calls home to a Command and Control server to execute arbitrary commands. Recommendation This...

Malicious Package

Overview All versions of soket.io are considered malicious. The package is malware designed to take advantage of users making a mistake when typing the name of a module to install. When executed, the package calls home to a Command and Control server to execute arbitrary commands. Recommendation...