Malicious code in @teselagen/react-list (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5eae9e0260589e145031f17078f10e631996b6420cb9494ed5c5e4f378b01c94 Any computer that has this package installed or running should be considered fully compromised. All...

MAL-2025-47277 Malicious code in @teselagen/react-list (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5eae9e0260589e145031f17078f10e631996b6420cb9494ed5c5e4f378b01c94 Any computer that has this package installed or running should be considered fully compromised. All...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...

@opencloning/opencloning-elabftw (>=1.6.0 <=1.9.1), @opencloning/opencloningdb (>=1.7.1 <=1.8.1) +9 more potentially affected by unknown CVE via @teselagen/react-list (>=0.8.16 <=0.8.18)

@teselagen/react-list NPM version =0.8.16, =1.6.0, =1.7.1, =1.0.1, =0.0.15, =6.10.1, =0.0.14, =0.5.7, =10.1.14, =18.3.6, =28.0.0, =30.15.8 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENREACTLIST-12744522...