MAL-2025-6352 Malicious code in @hypervector/hypervector-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c545f2259849fbb80d4250dcbd736a7ec8fda86cb48ffb7b4a2b1b6eaacfa614 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-6364 Malicious code in mimelib2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63ffee5ddddfafc58e3b65b97a362d842d02a6284d4d51de3c6dcce98b7eb1cd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-qrcode-icon (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7415d66ef3e5a6e0067c5808f2f7929a2e7ec2b74003252747a89dfe7341b50b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in cookie-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c94db01436156d78a21b41d74cf372b4e12f89a2480b8986397309b1c4165b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple for Mac computers. Apple macOS has a security vulnerability that can be exploited by an attacker to gain root access...

MAL-2025-6341 Malicious code in react-stylizer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 812122411d8ab81ce837c1af7272056e2f1dd88b413f290021a615d5ad03524e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in fast-todo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6e463847c2b9e6ff287b0862f66d4845c4452d8f4508ee7a298c99fccec9ca00 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-6330 Malicious code in @ai0x1337/budoux-extension (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d38d31eabaa7910f5de7238778b4b935f2369b2ffed9315c03e0a03d6171959 Any computer that has this package installed or running should be considered...

Malicious code in solhint-plugin-lido-csm (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f4e1653573c57f50f3e9d72fc8293e9051133742e8ea749ca7dda26c7eb89375 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in uidraftism (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57170f8a04ef1c34750c5fb4781b9af9071ce8936e4a5fc61225e5919acecf36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-server-dom-turbopack-experimental (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 919b44a54d192c9600403c1ad155e8d4c1652c00f211b52d40f3b61893419ba9 Any computer that has this package installed or running should be considered...

Malicious code in dexa56 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f43715f87a1218ff23eb2b375c7b84ac74b6e17a9035aeb9ea4c0657546b4484 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-6246 Malicious code in preset-classic (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c8120ab1c8e211545c22d69165ccd550b96bd77fa18731c412d73f2c2a36640 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in tnet-dps (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 45ed1abbbf74a45b20d6fc72505538baf442bd7dc2879cf8958b815f12ccde79 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in bingo-abstract-transport (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c453cfd4d38bc70b9b47a64bb81b2c3c982b8811f3fefe95b1788b5a24340808 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in bingo-pretty (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware db9cd7f456a7e51d21294046604654fa4f3ec5b9ee11c7acd713ab08ad6838da Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-6218 Malicious code in durilka (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 30237df1aa52d87c76f60c6ff031ed2283d3324ceb3a3d2aee7fb3a7d5788c1b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in chime-utils (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c47d81929483a169d2ee7d4f0f5c08d14518a52a1efa368fc87e2101bd75de5 Any computer that has this package installed or running should be considered...

Malicious code in adspaces (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 98bf52674bcffb7dfa7f1020507c064e580e45c09a87f5e02f704b35893b0ae2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in nodemailer-enhancer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc9c43546534172092180b5eb7cb00ad4bde99ac2caf6be2215bcdc3c17a1852 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...