352 matches found
Malicious code in aem-guides-wknd-app (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in jupyter-binding (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in tt4b (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 566cb941a2928e1680d09217c711e1a56aa24333a874bd07cff988cfa17e31eb Any computer that has this package install...
Malicious code in eslint-config-proton-lint (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d595489e0b5943870a58ffcd154d1a8ab7b4bbd45155465dbe9272bb6471060 Any computer that has this package install...
MAL-2025-57 Malicious code in api-demo-sample-lib3 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in @g.genie/api-demo-sample-lib4 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
Malicious code in issue-label-notification-action (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff65d59f127c562cf9ea1320a2eacb30540db8dff0ec2237c43f42add231b143 Any computer that has this package install...
MAL-2025-53 Malicious code in muzeeglot (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a924cd903cd9ec3511c788b9d1b75874ed09f4786dcf83a141a6424a9dddfd86 Any computer that has this package install...
Malicious code in lambda-demo (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 70fa7a653e95d7b948968c1605f557ae4f569e78a26d160f8768a44bca1b6f5b Any computer that has this package install...
Malicious code in player-workshop (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b2f2abed0d43ff0cb4723fad6e2c44fe25c5a9923cc44294ec1b199b4479d298 Any computer that has this package install...
Malicious code in facetec-browser-sdk (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 38f356209be66b9759fe0891f0751be720e7d758d002e5fd1541f0c10619f45c Any computer that has this package install...
Malicious code in zqdl111 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ad799637c930c5cdd91adee64300966d8a04c8ad1af244ca59d2e0049b86dc3e Any computer that has this package install...
Malicious code in zqdl333 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0f6366a5f4a87b1ca15c8a0edbf77942b242f6a055cce26d3ad4e91ad92e7ae3 Any computer that has this package install...
Malicious code in zqdl555 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b18d98c2639c2052e5fcb38fd21e609aef6201aa3e78bda2cb13f15227c08a5e Any computer that has this package install...
MAL-2025-15 Malicious code in zqdl333 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0f6366a5f4a87b1ca15c8a0edbf77942b242f6a055cce26d3ad4e91ad92e7ae3 Any computer that has this package install...
Malicious code in create-shopify-web-app (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 060088163bdd31721ea28bf31315bd2e50c4dd13215f62116756f66a3b69af83 Any computer that has this package install...
Malicious code in forcechatter (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e548ac2ba4e7e0cf0cceee4f34c9ae9aed9e72846aad09c730e9c4460d81354 Any computer that has this package install...
Malicious code in swisscom-scaleio (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0c56983709f53a43b82244bcb874d8ee94f893ad1f3c90d2bb0c4e875d5bb97b Any computer that has this package install...
MAL-2025-10 Malicious code in forcechatter (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e548ac2ba4e7e0cf0cceee4f34c9ae9aed9e72846aad09c730e9c4460d81354 Any computer that has this package install...
MAL-2025-7 Malicious code in treedome (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 684ae3e40b1c465aa22e0c0351dbd7dee0a7ebd2216a70b401167c95ae3b87d2 Any computer that has this package install...