5 matches found
Malicious code in wasm-bindgen (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b3b2a3d6aa85e6e53ccd0463891b26156f77f3b75134166dbc68c14ec2c6bd2 The package wasm-bindgen was found to contain malicious code. Source: ghsa-malware a1de8824d178cfc9806b7413eeb3661781e7e278f0b877117bddb857bddb592b A...
EUVD-2025-198914
Malicious code in @postman/secret-scanner-wasm npm...
MAL-2025-46991 Malicious code in @duckdb/duckdb-wasm (npm)
The DuckDB Node.js package @duckdb/duckdb-wasm version 1.29.2 was compromised with malware through a sophisticated phishing attack targeting the DuckDB maintainers. An attacker created a pixel-perfect copy of the npmjs.com website at npmjs.help domain and tricked a maintainer into logging in and...
MAL-2025-5677 Malicious code in cli-wasm (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e681236ac61ae5750fc09fb6b554532ef05f7dba07c824477fd8940d95387957 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read due to an invalid memory read operation. Remediation There is no fixed version for pywasm3. References - GitHub Gist - GitHub Issue Credit: Ziyi Guo...