21 matches found
EUVD-2025-26438
Malicious code in bioql PyPI...
EUVD-2023-47327
Malicious code in bioql PyPI...
EUVD-2024-50460
Malicious code in bioql PyPI...
Malicious code in rickquests (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-191703 Malicious code in compute-st-speed (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 35e058e2655bdae9fb5cef9e594f9f1dcc59206620e758c625c9cdee1e0634a8 Infostealer with multiple possibilities, but not auto-activating on installation. There are already multiple attempts to publish it, with different...
Malicious code in ethereuim (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3b0ffb55c54f64ae4381a989cd33833fe7120cb10f440b31d452004030ad65f5 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: funcaptcha-ru Reasons based on the campaign: - infostealer...
Malicious code in esqpywponggui (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ee98b21ebe6472caef54d5010bee08c68b7ffb54277bd33c2cafe6370decc12c EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqstringminecv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 269b4cc192001b612b1b8636cd7f58ef27ccee533b9f3d6b1dd828b8727a3eaf EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in tpramtoolpong (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ae3e26b44442d54fb2306da89fdbf61bff82609d4d25f7be123ffdbfb71beb2b EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in py-edpushinfo (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 56a9937c4bc4a2aff5e6a66daf69c19e74cc21417a591d35294ecad9febac84f EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in selfpeppongload (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 81196f72ebd41879dfa9bf5e306763aa615f01ffaca42646b20e8d8502f42e80 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in liblibpongvisa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 978f665590e384d94c4faa2c9e1b05ce770fde2f5500092a73f1a937408afac9 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqadpaypal (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx f54949ddf332749f5aca529493b4feb5858d68c273c2716b5efbfa2e90826b19 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqultracc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 459726b4e28e578db475dbb9a6bf8ce02c5429788d65637a4f159a02191e4b18 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in hydrapyw (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx dd84ad2d7fa226345b03571498e3cec9c0f32bd8f3329cbe7f6e54b1ed681ae3 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in httpcv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 854dbc9660169387e4898144f267434d5718bfc39d10dae7ebe3e7932c9d419c EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in progrressbar2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4344579811f83cb76de268f1255a2aa7ee26934f897cf6a89216f3826c838c7c Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in pytho-binance (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4d76290138f9eb2912f506aa108efb5e70077d29a2388d3d4437da71f150dd8b Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
PYSEC-2022-43091
The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-domains package. The affected version of d8s-htm is 0.1.0...
PYSEC-2022-43035
The d8s-urls package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-csv package. The affected version is 0.1.0...