Malicious code in toobit-test (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c55608bc5157f14f615aea6e2e8fd8a5004e3a307d5a12e69f5f6d311d2a74c9 Any computer that has this package install...

Malicious code in toobit-main (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bbef733acdf5215bfdef9bb31af40ec7e1bd2fb0cab3167cf10876e9020e971e Any computer that has this package install...

Malicious code in toobit-dev (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d0f3cbca32c205dc8a61718610eba04f690441add92e4fb0e98f1e3f18f21f9 Any computer that has this package install...

Siemens ModelSim和Siemens Questa 代码问题漏洞

Siemens ModelSim and Siemens Questa are simulation software from Siemens, Germany. A code issue vulnerability exists in Siemens ModelSim and Siemens Questa, which stems from a sample install script included in the affected application that allows a specific executable to be loaded from the curren...

MAL-2025-723 Malicious code in sigma-payment (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5cae3e39d6adad5c19ce159910927557c2e98660ac824828e0eb22a0dce296ae Any computer that has this package install...

Malicious code in hotmart (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 630908e08c08fe1b728bca7f4dc2b3bad96652d9083d958a6208bd3ea59f1a37 Any computer that has this package install...

MAL-2025-721 Malicious code in actiris (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ce42694aa8de599a7fc31c85d8c8bd89e7fd57194eb3b657b584a863fdf3402d Any computer that has this package install...

Malicious code in react-native-country-picker-modal-modified (npm)

The package executes harmful command in pre-installation script to send sensitive data to an arbitrary domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 69921c906d4d0ecfa3ba0de532e27f29b18c6be04a563ba99aa0590b1fcc77a8 Any computer that has this package install...

Malicious code in org.cocoapods.csv (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a3d922335d96d21629591f3c06d391cc64ca4117561dcb9711fb65451dd841e Any computer that has this package install...

MAL-2025-621 Malicious code in org.cocoapods.csv (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a3d922335d96d21629591f3c06d391cc64ca4117561dcb9711fb65451dd841e Any computer that has this package install...

Malicious code in next-refresh-token (npm)

This package executes a post-install script to collect system data and sends it to a remote server. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c1d44ee35f1e7a2f1a815de12ce539b2c3ffcb9ef5dc72eb632de64e000cf1b7 Any computer that has this package installed or runni...

Malicious code in openssl-node (npm)

This package executes a post-install script to collect system data and sends it to a remote server. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 06f19e257e800106253b9b27f14e1caac48d65284d85d47aa244d8aa9bfc97a8 Any computer that has this package installed or runni...

MAL-2025-141 Malicious code in serve-static-corell (npm)

This package includes a post-install script that fetches JavaScript code from a remote server and executes it. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fdac054c93284fd4c0dca285d57baabea075f4c42f7a8bd63abf69f974d56b31 Any computer that has this package install...

Malicious code in venmo-ui (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c56cfa4b6e6b329cc9502a5eeea242d13fd03e156392465657d5254b441ecfe Any computer that has this package install...

Malicious code in parseq-tracevis (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7f1942e5a38dc2f1ef479bf37cdc9f9737c8ffc2798503291d72615802a3a699 Any computer that has this package install...

Malicious code in gatsby-hampton-theme (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 14760a588a97ce4f749c5fc92a6eb3c66f77de950ea1a35c92b0dc6ed695b861 Any computer that has this package install...

Malicious code in vscode-gestalt (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b869acaad1d20750b0c435dea2d0a474208819d32ba8a1b00d42d57f850e65ed Any computer that has this package install...

Malicious code in build-stuff (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8b7ff7f3b5a1ee73432fc3f1ace509ffe1fcb48099ecca9aa87e0396fab2a7f8 Any computer that has this package install...

MAL-2025-75 Malicious code in jiolocate-ui (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 632763242c2df9c72854a919e8fd6a0c7a8b6debedb9c7e22cbd886883c4217b Any computer that has this package install...

MAL-2025-63 Malicious code in aem-guides-wknd-app (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...