CVE-2025-69264 | pnpm up to 10.25.0 Installation protection mechanism (GHSA-379q-355j-w6rj)

Inserito da Angelo Barbosa | Gen 8, 2026 | CVE

A vulnerability was found in pnpm up to 10.25.0. It has been declared as critical. This affects an unknown function of the component Installation. The manipulation results in protection mechanism failure.

This vulnerability is identified as CVE-2025-69264. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2025-69264 | pnpm up to 10.25.0 Installation protection mechanism (GHSA-379q-355j-w6rj)

Post correlati

CVE-2024-5766 | Likeshop up to 2.5.7 Merchandise /admin cross site scripting (I9TAHP)

CVE-2025-58264 | artbees JupiterX Core Plugin up to 4.10.1 on WordPress cross site scripting

CVE-2024-8167 | code-projects Job Portal 1.0 /forget.php email/mobile sql injection

CVE-2025-1316 | Edimax IC-7100 IP Camera Requests os command injection (icsa-25-063-08)