2045 matches found
MAL-2025-47951 Malicious code in orvlllcj (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ab4b3c617ed2588b83e702343b7afb883c2f26a6b15cfd1a269e7b928a22ea6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47937 Malicious code in solarpeng09 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a6045df4a0e5e5868d4c68eb60bd906129c7659cae8c241c253675bcc7d56bd9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47940 Malicious code in solarpeng125 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8efbc45d5a6c1e4417b885621127bea39b2fbbb6e6350676a2fd977303d5d059 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47927 Malicious code in graphflux (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 81407cede8c4a0a29787867b0a52b7947864a775ff7efbe05ce00785ea6160a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47934 Malicious code in vite-tsconfig-assistant (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 867785f3a2ce4c75f70bdfe547c34b8c96ae89125ef2ee3b37835f5b752c36c9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47925 Malicious code in file-uploading-advance (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a24a99ddaa80c4d726f189f11309cdab74b4343f1e567ec3c5fd01fcd9832b3c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47914 Malicious code in @dotevn/config (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd413fbd590c7cda815f04e1334a602b11a45675da1dc8584e3ba025676c0532 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in kecacapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9708d0d602f61799571f28e3206743afdc12aa74044857fe2a74d3755668f44e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47919 Malicious code in @winstan/binston (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d5a456158c683cc4e3bd977ec81310c39b3cf491b14458ed49766c0f58805cec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in helper-validator-identifier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0951c3ea5fbcafe74c05ac02d253d369e25a8cb9904f448f047a9c8b38d693f6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47892 Malicious code in pycodestyle (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8041596cf0ce7d592005bc7b6e2a389f3becf1c4f14864a8b2951c93f29711b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in lovable-react (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 55d5b437f91405ceb1fe18cde50960c5b8ad03910dede2cbdd179627eed2d82e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in lovable-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 903b816cc2c837a614d951c1cbb34aa264a93001e84b0c642687025ed9793e64 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ancestry-axios (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71501ecab204074038c46b64372fcfd400a8f1b7375edff35e29d5b6bbe7500a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in vite-plugin-parse-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0c3c9412f03ac4be0712f183133c219efac17d93edf28bf821d9dae53b7856e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mongoose-ci (npm)
The package mongoose-ci was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8d77c10d87ab8d987038afabe734d791e7d82eb5984a1e8789dbca6cc1e5063e Any computer that has this package installed or running should be considered fully...
Malicious code in @sev-ui-verse/contact-models (npm)
The package @sev-ui-verse/contact-models was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eafe3e022be23739d479cdfe1e577a7e5b593a528063ce67b8fa1beb911fb2e0 Any computer that has this package installed or running should be considere...
Malicious code in sha256-validation-xyz (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d087a7f065c7d1c6612320e8fc3d19957b0768a27ea56d1c6849c32193941829 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in isood (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95552c81d5afcf7c02c3015baf503fa6c6fd1e22457eb2ac421aec6353dd50da Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in tailwind-classes-overrides (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3533ded19e56068694976a22ebcd933310fdb82d4b79857298b09a3f5e30389b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...