VDB
MAL-2026-2947
MAL-2026-2947
PUBLISHED
CVSS 8.600000381469727 HIGH
Malicious code in moonbit-schema-utils (PyPI)
Risk Scores
CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| PyPI | moonbit-schema-utils | 1.1.1, 1.1.0 |
Timeline
- Apr 20, 2026 CVE Published
- Apr 20, 2026 CVE Updated
References
- https://bad-packages.kam193.eu/pypi/package/moonbit-schema-utils url
- https://github.com/zongen01/wechat-editor-studio/pull/2/changes#diff-d9555f91ec2cf16d2b3d23115fe3cf6600fa8b42627de82a81da48191c54d99c fix
- https://github.com/DiamondFrontline/wechat-editor-studio/commit/3c61484843fbc7fbeb5e81149296aa7843570ee1 fix