{"id": "GHSA-76XQ-58HJ-VWM2", "vendorId": null, "type": "github", "bulletinFamily": "software", "title": "Malicious Package in test-module-a", "description": "All versions of `test-module-a` contain malicious code as a preinstall script. The package fetches all names of npm packages owned by the user and attempts to add another maintainer to every package as a means of package hijacking,\n\n\n## Recommendation\n\nRemove the package from your system. If you own any packages that were compromised please contact npm security immediately at security@npmjs.com. Also enable 2FA for publishing to further secure packages you maintain.", "published": "2020-09-11T21:16:59", "modified": "2021-09-30T22:06:08", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://github.com/advisories/GHSA-76xq-58hj-vwm2", "reporter": "GitHub Advisory Database", "references": ["https://www.npmjs.com/advisories/929", "https://github.com/advisories/GHSA-76xq-58hj-vwm2"], "cvelist": [], "immutableFields": [], "lastseen": "2022-04-30T13:47:15", "viewCount": 21, "enchantments": {"dependencies": {"references": [{"type": "nodejs", "idList": ["NODEJS:929"]}, {"type": "osv", "idList": ["OSV:GHSA-76XQ-58HJ-VWM2"]}], "rev": 4}, "score": {"value": 0.4, "vector": "NONE"}, "backreferences": {"references": [{"type": "kitploit", "idList": ["KITPLOIT:116690769744039319"]}, {"type": "threatpost", "idList": ["THREATPOST:99DC4B497599503D640FDFD9A2DC5FA3"]}]}, "exploitation": null, "vulnersScore": 0.4}, "_state": {"dependencies": 0}, "_internal": {}, "affectedSoftware": [{"version": "0", "operator": "ge", "ecosystem": "NPM", "name": "test-module-a"}]}

{}