Malicious code in 4equest (npm)

The package 4equest was found to contain malicious code...

MAL-2025-7012 Malicious code in 4equest (npm)

The package 4equest was found to contain malicious code...

@aviationpast/niotest (>=1.0.1 <=1.0.17) potentially affected by unknown CVE via 4equest (=0.0.1-security)

4equest NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on 4equest and may be impacted: - @aviationpast/niotest =1.0.1, =1.0.17 Source cves: unknown CVE Source advisory: OSV:GHSA-P33Q-W45H-2HCJ...

Malicious Package in 4equest

All versions of 4equest typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the process w...