5 matches found
Malicious code in @teselagen/ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63813f363810c8dc88bfa35fbd3a365de9e23c00d5543cee6ef87dfb6e61b5a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47280 Malicious code in @teselagen/ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63813f363810c8dc88bfa35fbd3a365de9e23c00d5543cee6ef87dfb6e61b5a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
@opencloning/opencloning-elabftw (>=1.6.0 <=1.9.2), @opencloning/opencloningdb (>=1.7.1 <=1.8.3) +9 more potentially affected by unknown CVE via @teselagen/react-list (>=0.8.16 <=0.8.18)
@teselagen/react-list NPM version =0.8.16, =1.6.0, =1.7.1, =1.0.1, =0.0.15, =6.10.1, =0.0.14, =0.5.7, =10.1.14, =18.3.6, =28.0.0, =30.15.8 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENREACTLIST-12744522...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...
@opencloning/opencloning-elabftw (>=1.6.0 <=1.9.2), @opencloning/opencloningdb (>=1.7.1 <=1.8.3) +4 more potentially affected by unknown CVE via @teselagen/ui (>=0.0.2 <=0.8.6)
@teselagen/ui NPM version =0.0.2, =1.6.0, =1.7.1, =1.0.1, =0.0.18, =18.3.3, =18.3.6, =18.3.24 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENUI-12761782...