3446 matches found
MAL-2025-5635 Malicious code in web-app-express (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ee5553287313031193a1d7e8bb9fb1fe49931cdda2ce085efc8360ea1b18d01 Any computer that has this package installed or running should be considered...
MAL-2025-5630 Malicious code in iwf-typescript-sdk (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35758863836741b6af571432b4354ae16c72c1fcc720cae04dfb0c6506249e40 Any computer that has this package installed or running should be considered...
Malicious code in oauth2-bearer (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e3aa2d2499cf414a068a46af982e2179810f9ca6fe985bc099dec22b8dc75469 Any computer that has this package installed or running should be considered...
MAL-2025-5788 Malicious code in lz-evm-sdk-v1 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 171ea15aa901dba5305f361a9f0a2958fcbe7926518fa9f2467bf687b3a18c13 Any computer that has this package installed or running should be considered...
MAL-2025-5673 Malicious code in ca-ui-carbon-toolkit (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7fe942358c29b14aaa3755810e04ffe2cd696331434ed03a940060449bb9d05 Any computer that has this package installed or running should be considered...
MAL-2025-5674 Malicious code in caglass (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e455bdcd125bc7e808bd44aefba85c1ef5838aa36b61d5fd75f2c6f026bce1b4 Any computer that has this package installed or running should be considered...
Malicious code in seller-assistant-commons-fe (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3ce5fe0219875b1f9631f9bbd7ed53592500782697d8a2d2255f1e0fbce9398b Any computer that has this package installed or running should be considered...
MAL-2025-5605 Malicious code in n8n-nodes-zalo-user-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5b947fc267d5c40a50dc48860ddebb3d7ab7b78e58d65e0b97ddec970698856 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in k6-studio (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7b163d493761fa12ed8094157415651ec1b22824f021a7483637346825e08cca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5590 Malicious code in helioviewer.org (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 40173395fee816f71bb3a20b762c39e1bd65badaed05ef884c1e4083b7e84107 Any computer that has this package installed or running should be considered...
Malicious code in ytdl-vol (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c1dd6cf64d6aa793ef6c5994096a5eec3ba42a561c6194c2f8f63a215ec42f49 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in env-info-checker-kyy3w4fiurevd8uy43wfre (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d6fb3feadb029e83e642c54a8ffc29782d65e981a2bd769dc972463231215b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5806 Malicious code in com.razer.chromasdk (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b1ad926ddbb6413d05a3f45c0e214d6021452a02c31c62dc6b70cffd2c36c087 Any computer that has this package installed or running should be considered...
MAL-2025-5564 Malicious code in karakeep (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b96143e1a337213c5ae7cdcd914230744fcb082e0645188de5f5fa18b991916 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5586 Malicious code in telehealth (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1341fa0434bd6d34d4cd7c6e981f3454a6c1f5fc415c6fed9415ffa817d4721f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5578 Malicious code in reqweaver (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 186187a80deaba9e48696b9c33ee7d2c73224d43193dcbf3d70bcc8f43569c9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5541 Malicious code in azure-sentinel (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37e43a68053a45c1fcdea9e752fd9c13f6906e780ab5b8ff5436b3f1b5533d18 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5584 Malicious code in supply-frontend-runtime (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 15d83c3652e60a9d06ecdfb747c183a04299a54f3da58cb81144ff7461286b33 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5546 Malicious code in display-fetch_stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 93a196cb5e04250355d4a4e51d12810d2324320559124570c03be4209dba9d1f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in display-node_stream (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 43e1ddc830063064e13338d87b78e5a22a64f366d695306a8a11223e03e91bb9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...