are@2.1.0 vulnerabilities
Library for defining and working with abstract regular expressions that work with any symbol type.
-
latest version
2.1.0
-
first published
5 years ago
-
latest version published
2 years ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the are package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
are is a malicious package. This package uses "typosquatting" to bait unknowing users to install them, this package could be abused to become an entry point for more sophisticated threats, enabling the attacker to execute remote code on the target machine, amass system information, plunder credit card information, and passwords auto-saved in Chrome and Edge browsers, and even steal Discord authentication tokens to impersonate the victim. How to fix Malicious Package? Avoid using all malicious instances of the |
[0,)
|