Malicious code in meteor-react-component (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 10edb5e94e2b6aede51af9b2525726341571187cb32e9a56e9b86639c7130341 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in toloka-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c7326d0e79737f24ac6ba12b7f58459b7aa76c833af0bffc5791d2ef4f1a1ab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

PT-2022-26218 · Pypi · D8S-Networking +1

Name of the Vulnerable Software and Affected Versions: d8s-networking version 0.1.0 Description: The d8s-networking package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hashes package. Recommendations: F...

CVE-2022-40426

The d8s-asns for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-networking package. The affected version is 0.1.0...