2045 matches found
MAL-2025-5663 Malicious code in @jmerhi-atl/evil (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91620aae25b612bc0174c38ae40a4b87860a8070824a4fbb447968986ad8c368 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in jsonskipy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 825aeade17635320d2922155fc8e36ab7810c8cd83aa62a8521613534dc52e0d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5742 Malicious code in zplex (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ad25f43dff85fb90079f71e1416944834a6e7244faf6a1c75aa20fe17661db3 Any computer that has this package installed or running should be considered...
Malicious code in nonsensetest (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37ff18d1f339dc2f014b88e051c067ad240533616538c4684d8666f02568d930 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5635 Malicious code in web-app-express (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ee5553287313031193a1d7e8bb9fb1fe49931cdda2ce085efc8360ea1b18d01 Any computer that has this package installed or running should be considered...
MAL-2025-5630 Malicious code in iwf-typescript-sdk (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35758863836741b6af571432b4354ae16c72c1fcc720cae04dfb0c6506249e40 Any computer that has this package installed or running should be considered...
MAL-2025-5788 Malicious code in lz-evm-sdk-v1 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 171ea15aa901dba5305f361a9f0a2958fcbe7926518fa9f2467bf687b3a18c13 Any computer that has this package installed or running should be considered...
MAL-2025-5673 Malicious code in ca-ui-carbon-toolkit (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7fe942358c29b14aaa3755810e04ffe2cd696331434ed03a940060449bb9d05 Any computer that has this package installed or running should be considered...
MAL-2025-5674 Malicious code in caglass (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e455bdcd125bc7e808bd44aefba85c1ef5838aa36b61d5fd75f2c6f026bce1b4 Any computer that has this package installed or running should be considered...
Malicious code in seller-assistant-commons-fe (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3ce5fe0219875b1f9631f9bbd7ed53592500782697d8a2d2255f1e0fbce9398b Any computer that has this package installed or running should be considered...
MAL-2025-5605 Malicious code in n8n-nodes-zalo-user-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5b947fc267d5c40a50dc48860ddebb3d7ab7b78e58d65e0b97ddec970698856 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in k6-studio (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7b163d493761fa12ed8094157415651ec1b22824f021a7483637346825e08cca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5590 Malicious code in helioviewer.org (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 40173395fee816f71bb3a20b762c39e1bd65badaed05ef884c1e4083b7e84107 Any computer that has this package installed or running should be considered...
Malicious code in ytdl-vol (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c1dd6cf64d6aa793ef6c5994096a5eec3ba42a561c6194c2f8f63a215ec42f49 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in env-info-checker-kyy3w4fiurevd8uy43wfre (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d6fb3feadb029e83e642c54a8ffc29782d65e981a2bd769dc972463231215b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5806 Malicious code in com.razer.chromasdk (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b1ad926ddbb6413d05a3f45c0e214d6021452a02c31c62dc6b70cffd2c36c087 Any computer that has this package installed or running should be considered...
MAL-2025-5564 Malicious code in karakeep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b96143e1a337213c5ae7cdcd914230744fcb082e0645188de5f5fa18b991916 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5586 Malicious code in telehealth (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1341fa0434bd6d34d4cd7c6e981f3454a6c1f5fc415c6fed9415ffa817d4721f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5578 Malicious code in reqweaver (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 186187a80deaba9e48696b9c33ee7d2c73224d43193dcbf3d70bcc8f43569c9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5541 Malicious code in azure-sentinel (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37e43a68053a45c1fcdea9e752fd9c13f6906e780ab5b8ff5436b3f1b5533d18 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...