3446 matches found
Malicious code in @walletify/backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f030c1111fb06c5daf5d9b522a95b60e2059a449d880165d538d494c7ea99993 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-185352 Malicious code in @walletify/ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47d10b25587929b2987efd39df23877c3753147c431eb456cef63e175e70588c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in 4meme-readable-stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bf6d930ea2c0ad7b353677dfafdbe18356b2cb350a496f593dfd2a284b6ec3e The package 4meme-readable-stream was found to contain malicious code. Source: ghsa-malware...
Malicious code in aes-core-valid-ipherv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4b3e5a270d63d751fe142a9d81d59870ee3c9bbe18403a4da5fbff3c5cce2b8 The package aes-core-valid-ipherv was found to contain malicious code. Source: ghsa-malware...
Malicious code in read-async (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d50e44ff451ef9fc81f95c35723295ddf21c4809772def9f17d454f36060ffa5 The package read-async was found to contain malicious code. Source: ghsa-malware 2425ce18f083d47fb3a3ea1f6f69939c013edff9d27960bac75e225e09d390cf Any...
MAL-2025-50728 Malicious code in phantom-fixer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12a29d0b7233f4c6d8534448b0202eaddc448817008782120ede8110b31b010d The package phantom-fixer was found to contain malicious code. Source: ghsa-malware 08b29349698428ef5ef1924bece07e739b2c0dc4ee6be172dba838e6c5e4dabd...
MAL-2025-50731 Malicious code in telegram-travis-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f21c0fea0fd00ecd7a983e99a6525746ac36f46a54288cb02a5c9aa852f2d4ac The package telegram-travis-api was found to contain malicious code. Source: ghsa-malware...
Malicious code in synqroomkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 914da44da2183d035b344098fd0e5fe8c942b80666fa3cbcf855efc2b2239faf The package synqroomkit was found to contain malicious code. Source: ghsa-malware 55bfdc58beccccc6ae0646990cdc186d46c910ef90f5abdcf0c6e4d1d8b52024 An...
MAL-2025-49729 Malicious code in dandh811 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19da138a15aafecca5e956762f4d1408b284e452f2afc522d2fe1e8f9549a95d The package dandh811 was found to contain malicious code. Source: ghsa-malware ff1136cf9e4afdd278837f2b23779df88ca82c593d3a3e063dab99161adc3f56 Any...
Malicious code in tailwindcss-gustify (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1671650b65b4934845aada45f513b1bea7032ea94d90f9e1517e60bce563b621 The package tailwindcss-gustify was found to contain malicious code. Source: ghsa-malware...
MAL-2025-49380 Malicious code in chai-await-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ad46eab8b628ea50c737795204bf86f36069b9577310c833ea00a469024ec0b The package chai-await-test was found to contain malicious code. Source: ghsa-malware 47ca275095dc49120d03c89b6b2192f62339069acbd6717fc39d06c04c07037...
Malicious code in rbx-api-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adcdceb1d10e901a9b6e6666de7760a70b8a30d2e4f4230f37f089714d62227d The package rbx-api-ts was found to contain malicious code. Source: ghsa-malware 40b2b2f44e007e32202c67b4c33caf98936df9a60df7dc60e7163078fff8b7d3 Any...
MAL-2025-49369 Malicious code in tailwindcss-react-sass (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c6f72d8d64a8612b01ed58fa0bcacd97698a820dcf3b2ebf50dec6e23831065 The package tailwindcss-react-sass was found to contain malicious code. Source: ghsa-malware...
CVE-2025-43468
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access sensitive user data...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989074)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989074 advisory. In the Linux kernel, the following vulnerability has been resolved: efi: runtime: avoid EFIv2 runtime services on Apple x86 machines Aditya reports 0 that his recent...
CVE-2025-43390
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.7.2, macOS Tahoe 26.1. An app may be able to access user-sensitive data...
MAL-2025-49322 Malicious code in containerization-assist (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79aa72c875d99fe35db3e9de0382cc573aafe3a6a85d23ffcd7d6e47291e9f7f The package containerization-assist was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-icon-pkg (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d8ba17d7a373063f5a6120fd27a52bb855006bd5f440ee5d2f287cccaeb6bd5 The package react-icon-pkg was found to contain malicious code. Source: ghsa-malware ce6d8c074bdec68ae646e31b821c3896f805e01c46c5464e8db624d09e133205...
Malicious code in soxhob-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f363c792232ff069ace1465cb749f1af3aaecf8dfac04cfd380891e6e92caec9 The package soxhob-client was found to contain malicious code. Source: ghsa-malware f87ebbd60bec6fb45dfb478c7a9bd94336690f19c4870e5ac5766c9d864a75ff...
MAL-2025-49260 Malicious code in hemi-viem-stake-actions (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1d9184337bc393349d525de921a714d1d1b7d49ccac08cc2d35ff378627971a The package hemi-viem-stake-actions was found to contain malicious code. Source: ghsa-malware...