24 matches found
Malicious code in capacitor-plugin-service-worker (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36f1958d8bc44724a00d45b291983ad836dc2f28370c27f83c76f7bf1780bd4b The package capacitor-plugin-service-worker was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-3327 Malicious code in capacitor-plugin-service-worker (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36f1958d8bc44724a00d45b291983ad836dc2f28370c27f83c76f7bf1780bd4b The package capacitor-plugin-service-worker was found to contain malicious code. Source: ossf-package-analysis...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...
EUVD-2025-198841
Malicious code in capacitor-plugin-purchase npm...
Malicious code in capacitor-plugin-purchase (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54ff438ebca922d9d6cb6a8a96700003065dbfc0ed65a5984edec2d5f5d37751 The package capacitor-plugin-purchase was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190836 Malicious code in capacitor-plugin-purchase (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54ff438ebca922d9d6cb6a8a96700003065dbfc0ed65a5984edec2d5f5d37751 The package capacitor-plugin-purchase was found to contain malicious code. Source: ghsa-malware...
Malicious code in capacitor-plugin-apptrackingios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db2b5d0386124d893499ec984d85876c5267739a62e53b776e829c3449a7cee8 The package capacitor-plugin-apptrackingios was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198842
Malicious code in capacitor-plugin-apptrackingios npm...
MAL-2025-190835 Malicious code in capacitor-plugin-apptrackingios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db2b5d0386124d893499ec984d85876c5267739a62e53b776e829c3449a7cee8 The package capacitor-plugin-apptrackingios was found to contain malicious code. Source: ghsa-malware...
Malicious code in capacitor-plugin-scgssigninwithgoogle (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b87f31a2266c9633975e61214361882324c01060c614e04b15ac2e3a570fe6f The package capacitor-plugin-scgssigninwithgoogle was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190765 Malicious code in capacitor-plugin-scgssigninwithgoogle (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b87f31a2266c9633975e61214361882324c01060c614e04b15ac2e3a570fe6f The package capacitor-plugin-scgssigninwithgoogle was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-198734
Malicious code in capacitor-plugin-scgssigninwithgoogle npm...
Malicious code in capacitor-plugin-healthapp (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7ed67ecd3a89635aa7072f0b0399ad7c1fa0f7805c8bbe59b9a775654e5acdab Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in capacitor-plugin-vonage (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4d89f3813eea824f42ffe8eba246c1abb9f4857b3a7cb55155a7941b9631b49b Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in capacitor-plugin-ihealth (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a74e8404cbb6bed0d720944cd8e6b06a310c8358bc3ce6065c60146610ff52e9 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-47397 Malicious code in capacitor-plugin-vonage (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4d89f3813eea824f42ffe8eba246c1abb9f4857b3a7cb55155a7941b9631b49b Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-47396 Malicious code in capacitor-plugin-ihealth (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a74e8404cbb6bed0d720944cd8e6b06a310c8358bc3ce6065c60146610ff52e9 Any computer that has this package installed or running should be considered fully compromised. All...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...