162 matches found
MAL-2025-17493 Malicious code in conmendator-api-client (npm)
The package conmendator-api-client was found to contain malicious code...
MAL-2025-27904 Malicious code in nuntius-api-client (npm)
The package nuntius-api-client was found to contain malicious code...
Malicious code in dev-api-client (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 258921e8b616b5a24a74d27aabeedac0438ae3474367a670f6b8d4b3af7a6f26 Any computer that has this package installed or running should be considered...
MAL-2025-4740 Malicious code in dev-api-client (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 258921e8b616b5a24a74d27aabeedac0438ae3474367a670f6b8d4b3af7a6f26 Any computer that has this package installed or running should be considered...
abracadabra (>=0.0.0 <=0.0.7), ac-solver (=0.1.0) +309 more potentially affected by CVE-2025-30167 via jupyter-core (>=4.10.0 <=5.8.0)
jupyter-core PYPI version =4.10.0, =0.0.0, =0.14.0.3, =1.0.0, =0.1.23, =0.20.0, =0.9.5, =0.1.0, =0.0.4, =1.0.1, =0.1.0, =1.0.1, =1.0.1, =1.0.14 and more Source cves: CVE-2025-30167 Source advisory: OSV:GHSA-33P9-3P43-82VQ...
CVE-2021-21430
OpenAPI Generator allows generation of API client libraries SDK generation, server stubs, documentation and configuration automatically given an OpenAPI Spec. Using File.createTempFile in JDK will result in creating and using insecure temporary files that can leave application and system data...
MAL-2025-4220 Malicious code in glean-indexing-api-client (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c4f72985a496d7f564761c6862c160db30daaa442596d1cb609b0cc750bfad7a Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
Insomnia API Client 安全漏洞
Insomnia API Client is an open source cross-platform API client for GraphQL, REST, WebSockets, SSE and gRPC from Kong Open Source. A security vulnerability exists in Insomnia API Client versions prior to 11.0.2 that stems from a template injection issue that could lead to arbitrary code execution...
MAL-2025-1897 Malicious code in meta-api-client (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in meta-api-client (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-1854 Malicious code in instacart-api-client (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in epicagames-api-client (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in dropbox-api-client (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-1781 Malicious code in dropbox-api-client (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-1729 Malicious code in apple-api-client (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2024-2566
A vulnerability was found in Fujian Kelixin Communication Command and Dispatch Platform up to 20240313. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file api/client/getextensionyl.php. The manipulation of the argument imei leads to sql...
MAL-2025-546 Malicious code in meli-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 152f98442370419a0e0c3fb36c2e01d398741677238bd205877b136806a6922b The OpenSSF Package Analysis project identified 'meli-api-client' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-523 Malicious code in lyft-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 98ac8ee2b0e096fab5b480794e79170dbc9b2162464fdf0f1e0124de1575cfd5 The OpenSSF Package Analysis project identified 'lyft-api-client' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...
Malicious code in lyft-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 98ac8ee2b0e096fab5b480794e79170dbc9b2162464fdf0f1e0124de1575cfd5 The OpenSSF Package Analysis project identified 'lyft-api-client' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-485 Malicious code in iberia-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 319f6abf3b09e20e9437a49664f6cc30ab33e4f25254aedd9d3d440e46770d2e The OpenSSF Package Analysis project identified 'iberia-api-client' @ 999.9.9 npm as malicious. It is considered malicious because: - The packag...