4606 matches found
Malicious code in solara-websocket-dll (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f7987caa0572ba7ba558b028e0c1e8c9fe84db279417057afc890d78435b290 The package solara-websocket-dll was found to contain malicious code. Source: ghsa-malware...
MAL-2025-49251 Malicious code in bael-god-thanks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fb105ca33158c030cf28b649844c05d95a90e00aae8866710025a5ea6ed43a0 The package bael-god-thanks was found to contain malicious code. Source: ghsa-malware 1ada7d14f26d17acaa1f5bc8625c26c9dab2ad3018eeff170305cdd60e45247...
Malicious code in ethesjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea9c413600cb75bea29c7e567157efcaa07b76b9efbb30cb378943bd81eb760e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sort-keys-fix (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6fd040f6b48ad761cb38f7172921ad9f1a82689c1ac612e6f936271eaf1f08d1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in xo-styles (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 44b06297a4f222643e8b7a977e7dfd944c0a2666d5066f0db0a61674b2ea84a9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in typescript-sort-keys (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9936ccc8347b00204eae711ecf8b26d6d9444300021678c11327776463123325 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49076 Malicious code in xo-validation (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4a2dc971622a44de97536e68fb7287ef32a7a1bdabe0d0386eadf248219cea54 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48914 Malicious code in vite-manual-chunker (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2466db729b423d58b084a5f99834cfaf8c62af4179350ef30978e32f36b50fa7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48562 Malicious code in deviceauth-enterprise (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 81241adb2806e1b1d4e82b160d92edbdbec9ad3e8ba91dab321514de1f14fa75 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bcrypt-js-edge (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bca5605febed4ebf8f03746e572ca1fb05186ff2714f0f1c34842fc4858f9fa7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in cryptocom-private-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1c127979ce2c818c0baa9e2f6212dc73783686c797a35b3e63148a4815325de5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48318 Malicious code in nodelog-lite (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c3f1413a6184e042f68d9e0cee79523ea3c0566535bb56e1e0b13370875fd8e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48272 Malicious code in andes-react-floater (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63aced74061cbadf118f22491f4edb9450b8ab612b289b34f3b0acefd7860d61 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in js-notifiers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 516c8c2eb1e3c158b2e0c618c03ccee9b71d7aebe439a4ddbe2900a8fc518c7d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in chai-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 975b6ac20ebe483ebacc5aac930cd8efb123c6f3e9c68d18bf72c0e42c1787ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48246 Malicious code in mad-1.2.9.2.2.8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d9ee7df3c05d745488aab56d8e7e24dcc135b735d5f8b1f7a620b635e2d1514e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48201 Malicious code in redirect-o92d2h (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 77f3c6a2ba50a265c6c612f8d9982534cea0e6b9441dec88bd1a7f428adfa8af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @testcarrot/supply1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 517d985985f415a1c4c91f10bdfc1757c72f7331c1f00d61ef96d902603783e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-w9cx9u (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 82ff558f1e1686cf6046bb0bbed08f411c888a5ec5764fd6f27dc630c6116b5d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48031 Malicious code in migration-docs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6df2c870c5d08b1672285eb7a008a6c1f960920bf35587f217d96c7f08051a14 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...