2045 matches found
MAL-2025-1479 Malicious code in byted-player-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f3159d64d6d44643ec6d2d05b6743a1ac3985530d76b41810598a873c7d34218 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1397 Malicious code in bitstamp-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b47b2bc18b088e918e9f0a119c786790456bccd97013b5561c3a593b09b6d0ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in lbank-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af2e7b3d563cdc0ef10b52937250bae2ab41fce0d24fad93efa37fc06eab3d20 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in toobit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f762603da623d8fe137db26b48c17bb54cead19699d368690d433f939e45316f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in weex-internal (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f5dc8201c1f5628c039b881bee7d0251b1034d1ad7a7ef923c7e8e2d83d2bd28 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in coinstore-internal (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05d0767c1978fe4aea1d8d7ba69d0024d46e3bda1aafee9038125e6cfcdf0756 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dzengi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8119e05e44d286deeecdba85e6cf45a95749db4907cb770fa9828949f1fc347c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1362 Malicious code in genesys-richmedia (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0961665538e0d2d003567292d856ba063d66f2dc4ffa8cd8fbf50ea8e65a2645 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ascendex-test (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a7d0c8803a00a9ae99435e647d34560b1abbd7f2916cf052fe47e842e7b6a407 Any computer that has this package install...
Malicious code in htx-production (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a324a3156986db6587e4fe70275125c2b106568801878d78c83f8fe6a268c3b0 Any computer that has this package install...
Malicious code in nodex123 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 618140b407aedfe1e6bb6be93aa0f3f347a759aa42e82f72ae5e44893a119237 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sparo-real-repo-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 93d18b364aaf7362713190f03898dae9466135f12296f1c8384d269df6910bc2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1264 Malicious code in zkwasm-poc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bc6469b76f120091996789c8a222676a36dc660a1a3411c27b232b1938a6b40d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1249 Malicious code in internallib_v331 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7396dc02a5405a71efdc0e63b0eaca22d4ba3161189c8366d3bb835fc7a18b6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in internallib_v331 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7396dc02a5405a71efdc0e63b0eaca22d4ba3161189c8366d3bb835fc7a18b6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in libhash-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b2e27ca6bff082d9645b924364c7f5bba8fbfa574d7f60ffe823a7c52cda079 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in new-items-card-component (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cffcddd91732bfca058bc61ed267aa0a24f1e71e7fcd830cf9060d8e63cd57fe Any computer that has this package installed or running should be considered...
Malicious code in calendar-card-component (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95a4969cc148bc29146d190547f35d8feedf6f215b80c642dc30147343561f09 Any computer that has this package installed or running should be considered...
MAL-2025-1116 Malicious code in etched-oracle (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 97df8d30fd81167c60450b61facff2cbe4d9b6d83d9092fd901c55c632026968 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1122 Malicious code in fastlane_paypal_video_project (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cbac686e7f68e9b8765ef6dfde034e191e47cb639a2ccc0e2535e8ef61c522e8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...