4606 matches found
MAL-2025-2037 Malicious code in decode-a-gif (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 189852f75090ee4074de6d69b443a1ce458fa720fb8e18267f6923c5c97bc2c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1624 Malicious code in rpsreadserv (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7613e616eae562e968e6493bca504a1081311fa7b668cab5883c22f7468f19b4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1591 Malicious code in findomestic-ui-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 731a944111d653908b4d57be5f92681aa2954a42a4ddea0169b05c3aca65a7c1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1609 Malicious code in mep-ul-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2d593c7ae7f8e32d4a74e793a97c54a82aba7a8e9123c55be97c8b4c254ce96f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in behat (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 97effea6d055142393f3490e378f102fefa698c3b40c3f9d0d1e3fb46df23639 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1606 Malicious code in lsp-sample-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3952d2630fc48e566e4d96081001b64dcc66120b7d8b6102c663f11412dbfa36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1496 Malicious code in sally-fn (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4d8f992872ff1926200839cd344c09dfc137f063e5f7e5f87f54d62b1d758202 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1419 Malicious code in htx-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7af8cfe522f6a03c75b9bf02f62bb022b2930607b810b33a905d16a26d2991c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1445 Malicious code in toobit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f762603da623d8fe137db26b48c17bb54cead19699d368690d433f939e45316f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1433 Malicious code in p2pb2b-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f3406bc1d90365600ac04cb2cc6fcfc8ff98c4d9050b2bc5fa598c3bb3c7da4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1408 Malicious code in digifinex-dev (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 19cfa1ecb29ae8496e8984153bdd6e045fc0cdc8ac994e67678201fd125220a5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1457 Malicious code in yizhifabao63 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8e401203ed8c584cdb95319e5420fa866fc2bfc7c74af5da32079aec65289308 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in pages-e2e (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8fdc9ed5e9c2f9d6d0e57ed2a060d76ead69858fcbae60c4265500ef4dd1527 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1373 Malicious code in pages-e2e (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8fdc9ed5e9c2f9d6d0e57ed2a060d76ead69858fcbae60c4265500ef4dd1527 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1380 Malicious code in tenable-universal-layout (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a06fb3037f4c830e070f05524b0e4d6e3cb5adec2e77bc06f20ee92a42742689 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bitfinex-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware acf4f4f866fbab9eb346623bb4cf642c39a24b90eded6f7c82963b1ff3df25a9 Any computer that has this package install...
Malicious code in vhx-node-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 97a8bc9059906dee3aacb8bfb00ab219e1fb0cc948a15b861d2455a4a36ec006 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1245 Malicious code in fluencelabs.github.io (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c3788072d85296aa9c456499d5d0923967e28690fd1f3dc6d3fb8e00c2ee33a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1161 Malicious code in paypal-react-donation (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a4163e772410fb8d023c936bd357a70a01d899798568afca41b94daf7b06d688 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1103 Malicious code in custom-filter-link (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4dd97872144cfcf29d6340b6d2b80e3ed243255bdecaa0673d71da8598a5e5b4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...