36 matches found
Malicious code in @service-suppliers/set_initial_loaded (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2bd44f16d8e16a982d3d1b38f7956db80de10ef3c0c176e7079e684926c1c3c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in vscode-websearchforcopilot (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 247d22ce4a478ffa11b9b10a31460cd13afeba961c80bf8f08a8557aef325569 Any computer that has this package installed or running should be considered...
MAL-2025-2491 Malicious code in @theoretical123/providers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3e1ac0be55c85d10a80061be96a98fee35155a4a24297d95b281f4ce8226b42a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in zqdl333 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0f6366a5f4a87b1ca15c8a0edbf77942b242f6a055cce26d3ad4e91ad92e7ae3 Any computer that has this package install...
MAL-2024-8867 Malicious code in node-integration-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 23d6de79c4bf861e69bfe8d180b460e32004ab2e37565da361ba8874d29c6a71 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-8766 Malicious code in glintier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9d7a1e1bc5124b35c9fb5c808db8e7af93ea9f0b4cff50eaa391c9e74e2b0c4a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-8667 Malicious code in @diotoborg/ullam-neque-voluptates (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 206aa477c95775264ca34e824a6b56da2f94b6e1592b395003f7ca3f1bbb3361 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-8482 Malicious code in @diotoborg/nulla-tempora-voluptate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 12a89165556d0e2ce5d858384b89b4f5ce8a35714f4b28625840b398592f1b3b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-741 Malicious code in wlwz-2312-6304 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6ce8d72afc4c30e965d4fd324307fffbf59f6a993a75245861f2f876589939f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-360 Malicious code in wlwz-2312-2101 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 37bd31b1ef04918702ea9c441062375890a29f9c8934330f534d23bc3f1acd50 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-356 Malicious code in wlwz-2312-2006 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca4724585c0c1a8632b57143b8fe6f1eb48784621159964ce9f3536c9dc72af6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8728 Malicious code in djs-sb-v13 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2be29482d052cda3fe6813bef98ba0696f3311f098fcff6b8e516f252860179e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-7941 Malicious code in your-dpd-rest-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57f29438d66f642d44c66209d9219a5bce9c31f2cdb3437e711193f13af28113 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-178 Malicious code in clientcore-base-businesslogic (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9a94e603204ca5a42a6d23bebbbd808891a06c243d1146e4514967ed1ba30477 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ytreader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6a69dfe4d469d389b8db7b4e27084c0d17aa03c753dc0336a622e08402e04b24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-995 Malicious code in yandex-yt-yson-bindings (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ef8f5064d17e16f308f05ff124d515f803d1acfdc65fa58b4c26a8ac52041b2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-163 Malicious code in cathode-versions-javascript (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a0e16e7e4327697f795d989d71781e02f4036cfffca1d0dce1e5b9a6f0a54f7d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5412 Malicious code in polyxqkizwcbvjkm (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a0516f5f8579181d1209e468a68d63338e8d7bd5a2235e78d4a6fe9e00199fdd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4878 Malicious code in node-child (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 280a54ba81116fa296951b2b9431a78d1055fa15886fb848a98707ec9be36994 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2456 Malicious code in development-guide (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 23fee7eb3ceb54ffceb35cd803eddfae751b7889bc90a3fe1afcf309fc7411e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...