MAL-2024-11976 Malicious code in eritiopitop (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d15b644f2a4d79a062d6c3a7af975bc368236569d54382196034bcb9a8f42938 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12007 Malicious code in my-app-name (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e3b688286528def3945fc6d678e314a2678fdddd35def920c64e4c311a29d416 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11903 Malicious code in hackbro (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc47c5f305fc03f562acfd324aa89273fb66507dc4c37bef544dec43fe8ef5c6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in testin-elengos (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a8b81d93eabbd732b074f3694f5d0bd4969f90c18eceb07c91c188cba1f26b5b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in rudije (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fcdd046bf1e56d4d7e470f97bf73aba4e564024ec6a89b1493ffc7d5c5a7101c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in assetmantle (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25dddd918f13d7e544f8d420513711de48ce49d7c545668b49d312d4054ff4f5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Ubuntu 14.04 LTS : Linux kernel vulnerability (USN-7122-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-7122-1 advisory. A security issue was discovered in the Linux kernel. An attacker could possibly use this to compromise the system. This update corrects flaws in the following...

Malicious code in listing-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9721f8e927e787ea57b202a8a5b29ab1fd0cd530861055ad6a3e36a1c0df8d9a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Java(Script) Drive-By, Hacking Without 0days

A remote code execution chain in Google Chrome, which allows an attacker to execute code on the host machine, can cost anywhere from $250,000 to $500,000. Nowadays, such powers are typically reserved for governments and spy agencies. But not so long ago, similar capabilities were accessible to th...

Malicious code in ganach-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73d3e3f61f335dc7d34337825d521731cfa9030c28efb0b1dc3c13cba719d89b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10436 Malicious code in puppeteerwweb (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5cb0748b32f74311c6685d9f83b7f96d02b87da7abe76eddbf2f3d787179eb97 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10341 Malicious code in puppeteer-extra-stealth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b37fbc6ab229a243ce69502d1a45b114b8b4c6318a961389367378d664f35b03 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in sc-pattern-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6cbcdc7facabe72ef42307c4747ea188fbeec7c3f4f2203bfab0770204dc01c9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

GHSA-W7HQ-F2PJ-C53G pyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot API

Summary The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be achieved. A file can be downloaded to such...

MAL-2024-9312 Malicious code in 52qr42 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e559619ab6112e5213407ad80e432cfb2f9143718e79a18bf5c4f94d26ecf0d6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in updated-today-gen-apex-legends-h-a-c-ks-f-r-e-e-glow-and-aimb-ot-safe-to-use-2023-ms0sfd (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 41f8e217b061367a2544f69c657e9f3d6cc3535698498abe94f975e9147d708e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in multiple-keys (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da4233e3b39779d62d23e578c4ceb25ff5a78a6f0285b709b91ef0cf36ed7d7e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8905 Malicious code in temp240824 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8a7dd6aaf4dcfd18798c971ed85382e9df124ddf047164ea6b7580ac95d9301 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8799 Malicious code in rbds-frill-auth0-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 150dbdfd8f858852151c86f252e31bbb62cb7fdd4afb0babf23f9817a5a222ad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8327 Malicious code in @diotoborg/explicabo-laboriosam-maxime (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 55ef48ecbc216be6aa561723cf4641349fc2cb8f1a7073c919f6e78f4cd5ddf7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...