4606 matches found
MAL-2025-4956 Malicious code in owncloud-activity (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f185a6ebb16f2c76704506661c022be55d4d5fa2c82397aa60f5ef74cd38f879 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4955 Malicious code in typescript-aurelia-api (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f456bd00aefe5bb2b77b87defb41f72c059fe860d67b0fd0dfdfc98baebb11a Any computer that has this package installed or running should be considered...
MAL-2025-4954 Malicious code in plugin-proposal-private-methods (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0c0bb5e1a8b40dd1e99594481c6671cd4b01e1864b590ece14a07e6b241af7bc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in requests-json-overview-pkg (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0086e01d67b35f7c81bc1dd5ed909ade2520cf967356bfd3b4849d1372952a6a Any computer that has this package installed or running should be considered...
MAL-2025-4949 Malicious code in ls-onboarding-frontend (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware db473564b7a21b15dbe15dd67ba5ff1551000c7cef010286303eaeb5ecebfc68 Any computer that has this package installed or running should be considered...
Malicious code in zora-wallet (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2764c900ca7254d541cb02d4393365a610648e80866768703dcae298b4f3a4b9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in zora-auth (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5434c40d3048f846ef1d268e25b386ee6000460a939ff2aa2d91dd67ea1e897d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5062 Malicious code in truth-loop-server (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d367bf360c2776bacedd56615fcd53b1d0c2bdde9bc37e0e3407459bd7392e77 Any computer that has this package installed or running should be considered...
MAL-2025-4811 Malicious code in @mediawave/lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f5728f228ecbe0dfd5db6afd530842107e9356201123b885d36418429c37ffbe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4886 Malicious code in soracom-xmas-pi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 409a66069270c0626a428339c624520ef13c0cd1b1a96b7068da663ba96c065d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in yt606060-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a34a6e4b5985ebe933d9f77c07d0caa2d2c46ab01a085ddf49c79d900474f83b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4887 Malicious code in spring-security-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1c1536bc422839f96c59d0abf7e874f94ede428b9047a56668eb0293b047631 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4863 Malicious code in pipreqs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 94775693df8241bc82973cceb421a0a3263d044d7a810c724173c0b4ada361bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4858 Malicious code in office-addin-debugger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4af71d95c178cd7b60b7f8f5f758ebd7003e5b853b2649a1ad465580d6751f6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in karma-spec-filter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3503f8ac76bf4e0ba36fc7cbaab721a6285fe53ff821cd82ca0f4e417308eb49 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4725 Malicious code in frontegg-nuxt-example (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1dfeb24eb6c59e883dded7166ce9ff73fb43ab8352fcc2a154f86c7bf96be5e8 Any computer that has this package installed or running should be considered...
Malicious code in third-party-dep-b (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 546b33d818c64cc299bceb8f872816f6fad9fe13aa60434b533d5c4602337511 Any computer that has this package installed or running should be considered...
Malicious code in fin-connector (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 152ca8da5fc28154f53805661e135f5ae1a9f54f74564a97ce40a01bfb60f127 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4739 Malicious code in db-prod-interno (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6e74e2b29ed3bfab5c8c71abca03cf2cdd9b065043c14def8d9db5f65d41c60b Any computer that has this package installed or running should be considered...
MAL-2025-4754 Malicious code in nginx-internal (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a0f4d116d3fd75c3c8061c91010e1f912625a9860c89e5af3d3c912296d06de Any computer that has this package installed or running should be considered...