4 matches found
MAL-2026-6476 Malicious code in typedecode (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 593662d3b4cda901642b713f419417807a33f3dca74e818f66e8d0cf9ebcf6e3 On require'typedecode' / import 'typedecode', the bundled dist/index.cjs and dist/index.js execute an obfuscated import-time payload. A bootstrap.js...
MAL-2026-4466 Malicious code in @weirdorg/config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b28e2fe6ac03c8e426aeb69f62bf0b2bd4dfdb06a5acee273bb5967186c5504d @weirdorg/config impersonates the widely-used config node-config package, copying its README verbatim including the require'config' usage example. Th...
PT-2026-42369
Nuclei: Local File Read via require Module Loader Bypass in github.com/projectdiscovery/nuclei...
Exploit for CVE-2025-55182
CVE-2025-55182 This repository contains a PoC reproduction of...