Lucene search
K

5 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-15955 Malicious code in boogeyman (npm)

The package boogeyman was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in boogeyman (npm)

The package boogeyman was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2020/09/01 9:7 p.m.12 views

GHSA-9HC2-W9GG-Q6JW Malicious Package in boogeyman

All versions of boogeyman are considered malicious. This particular package would download a payload from pastebin.com, eval it to read ssh keys and the users .npmrc and send them to a private pastebin account. Recommendation This package was published to the npm Registry for a very short period ...

9.8CVSS6.9AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/01 9:7 p.m.51 views

Malicious Package in boogeyman

All versions of boogeyman are considered malicious. This particular package would download a payload from pastebin.com, eval it to read ssh keys and the users .npmrc and send them to a private pastebin account. Recommendation This package was published to the npm Registry for a very short period ...

2.6AI score
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2018/06/12 12:0 a.m.74 views

Malicious JavaScript Package Detection

Detection and reporting of known malicious JavaScript packages or package versions. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

10CVSS7.4AI score0.02342EPSS
Exploits4References108
Rows per page
Query Builder