MAL-2025-190991 Malicious code in react-jam-icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 369fe7c56e5f271a31e023cbe36323fc11043fc4747d0309c5c48aaa1eedf822 The package react-jam-icons was found to contain malicious code. Source: ghsa-malware 1c50426946a6dd92cf360d347aa3ed8f15988f3655c7721aff8dd0b8ff8e946...

CVE-2025-58371 Roo Code is vulnerable to command injection via GitHub actions workflow

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. In versions 3.26.6 and below, a Github workflow used unsanitized pull request metadata in a privileged context, allowing an attacker to craft malicious input and achieve Remote Code Execution RCE on the Actions runner...

Malicious code in melanesia (npm)

The package melanesia was found to contain malicious code...

Malicious code in reques (npm)

The package reques was found to contain malicious code...

Malicious code in @zalastax/nolb-qk (npm)

The package @zalastax/nolb-qk was found to contain malicious code...

Malicious code in elderberry-7bb-project (npm)

The package elderberry-7bb-project was found to contain malicious code...

Malicious code in meadow-mist-tmh662-project (npm)

The package meadow-mist-tmh662-project was found to contain malicious code...

Malicious code in test-mlw2-tiffs-prowl-votes-mazut (npm)

The package test-mlw2-tiffs-prowl-votes-mazut was found to contain malicious code...

MAL-2025-5891 Malicious code in appcenter-sampleapp-react-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8015d357cb8b89fe98c7076abd8ca3ea3146d43990de4f2410c5e2627a2fe970 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in comment-on-task-github-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b72236d210ad08858f047149a80c8690160ba7d9e24089047dd82efcc25db90c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2553 Malicious code in @shanye3501/curvess (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 53e18457ae0b04b57176a0e8d4a09d0646e05493edd1224fb1ceda27eafe97c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-98 Malicious code in @azure-tests/perf-container-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f758045b88d1bd05ec5e3c0cdb450944181f11fbf62924a6357d143e1641ebf2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

ROS-2-1697

2.1697 Remote code execution in nginxCVE-2021-23017 1. Vulnerability Description: The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a single error in the ngxresolvercopyfunction when processing DNS responses. A remote...

TTP Table for Detecting APT Activity Related to SolarWinds and Active Directory/M365 Compromise

CISA has released a table of tactics, techniques, and procedures TTPs used by the advanced persistent threat APT actor involved with the recent SolarWinds and Active Directory/M365 compromise. The table uses the MITRE ATT&CK framework to identify APT TTPs and includes detection recommendations...

Malicious Package

Overview All versions of sj-tw-test-security contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that...

PortSwigger Web Security: Build fetches jars over HTTP

CWE-829: Inclusion of Functionality from Untrusted Control Sphere CWE-494: Download of Code Without Integrity Check PortSwigger maintains several Open Source Projects under the PortSwigger GitHub organization. Some of these projects contain build files that indicate that some of these projects ar...