JFrog's security research lab, based in Silicon Valley, said Friday (local time) it had discovered six malicious packages in ...
JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results