Use of software with malware In hast-util-to-mdast9
Ecosystem | Package | Affected version |
|---|---|---|
 npm default | hast-util-to-mdast9 |
Description
Malicious code in hast-util-to-mdast9 (npm)
Mitigation
• npm hast-util-to-mdast9: No known patch available
References
• GitHub Advisory DatabaseSeverity v4.0
5.2
Medium
Fluid Attacks ID
FLAT-7CQK7
CVE ID
MAL-2025-192244CWE ID(s)
CWE-506Alternative ID
N/A
EPSS
N/A
Percentile
N/A
Source
GitHub Advisory Database
Does your application use this vulnerable software?
During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.