448 matches found
MAL-2025-5700 Malicious code in htmlbars-inline-precompile (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c4a212f0a71820f5e5ac4def1449d454a87b95082eae0de676cc3e27006831a Any computer that has this package installed or running should be considered...
MAL-2025-5813 Malicious code in glean-mcp-server (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2116bc0a7e97b50629b8572a3e7b46cb436c7732be15b4aa9c87835444eff955 Any computer that has this package installed or running should be considered...
Malicious code in web-app-express (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ee5553287313031193a1d7e8bb9fb1fe49931cdda2ce085efc8360ea1b18d01 Any computer that has this package installed or running should be considered...
Malicious code in with-shadcn (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 01233cb16b11624de4b6a0eb8110923a4611ba7c757ee2a9bdb46370b77099d6 Any computer that has this package installed or running should be considered...
MAL-2025-5825 Malicious code in seller-assistant-commons-fe (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3ce5fe0219875b1f9631f9bbd7ed53592500782697d8a2d2255f1e0fbce9398b Any computer that has this package installed or running should be considered...
MAL-2025-5594 Malicious code in rjs-test (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff96ebaa9a7e9bad85ca95367b0a36f1c3374ba9f80ce3fc5aac0a53671cb5e7 Any computer that has this package installed or running should be considered...
Malicious code in grafana-github-datasource (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 756c8548e63d376422abc6c7f12d97177a86331d9e8f4321c863bf8eeb5bf67a Any computer that has this package installed or running should be considered...
MAL-2025-5565 Malicious code in melichat-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be50c9968d324f01849a45b03ed727ed17bdb07f26f70fd0957996a883370a35 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5523 Malicious code in tools-component-library (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8430b3270cb2769c8afa5686cc7ed09d5be1fe3a5d680fd3887e3b2a1279e3f7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5338 Malicious code in emerson-angular-trove (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3710a484d9498defd18d6636486ebe053b8e10147655e6735b1d3769cb3a8676 Any computer that has this package installed or running should be considered...
MAL-2025-5337 Malicious code in themeone-animate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e147615a6d4e51665cb5f31f094f28cbb4c79a9c3ea92899c8a0a37ea40bb4c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5366 Malicious code in betsson (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b0a75e59ad3bc711c1c85bcaa0ffa95881a78cfb3542b431244d3af5e80b3e48 Any computer that has this package installed or running should be considered...
MAL-2025-5432 Malicious code in log-styles (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 07c86e8c217c9ecaf8f7718975790fccecd991a037b8764a08c4dd0754614a0c Any computer that has this package installed or running should be considered...
MAL-2025-5509 Malicious code in node-pretier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7de0fd2da3988016711f12d165ab5e9d22cf17a815aaeed0966944b96151dda5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in lard-o-matic (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3a6fa707dcb7f80a3e943088ac8c83eda76a55bc12da4f624427135f4e8677ea Any computer that has this package installed or running should be considered...
Malicious code in i-just-f-hate-bananas-plz-dont-mind (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed1ddc36f47ef52c0cb79e772a23bbc635d435ea0029cddcc4ba60ea0a6ced5e Any computer that has this package installed or running should be considered...
Malicious code in jun-xss-payload (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fcb0bad0a9a4d062fb4b4b42ac803616eb78ce2cee23746dfc3636d0909ee918 Any computer that has this package installed or running should be considered...
MAL-2025-5200 Malicious code in postcss-layout-grid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 462502060afb8b130fe73ec2cf8940f9cc7e7d86e3a70ad48606a6b1b4484231 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5434 Malicious code in math-utils-gava (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dbfa97f4de0215f88db05e74ecb15d790ba8221495f33601d48f98303f3f93d4 Any computer that has this package installed or running should be considered...
Malicious code in microviewreact (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bb4aa3ed998e2cc248404754caf11f331bf993d7eb37d5eabdfeb08402bb69f8 Any computer that has this package installed or running should be considered...