6 matches found
Malicious Package
Overview avx-web-build is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in avx-web-build (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-1789 Malicious code in avx-web-build (npm)
--- -= Per source details. Do not edit below this line.=-...
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS such that the SetClipboardText API does not properly escape the ' character, allowing attacker-controlled input to break out of the string and execute arbitrary JavaScript via emscriptenrunscript function. Note:...
Malicious code in pf-web-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ad58338bc89235ad34d3cdab1da0194dcab1bd39ced9667d13aab20bf0cb100 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5307 Malicious code in pf-web-build (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ad58338bc89235ad34d3cdab1da0194dcab1bd39ced9667d13aab20bf0cb100 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...