4609 matches found
MAL-2025-3873 Malicious code in arcnagacha (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2a3dd2e7d9a6e46241619d32ad08253b979773786a3bbec2e3116240d51a7898 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3882 Malicious code in dotenv-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 503db890e3fc82d35cc6de9ca072e67dd6c86e450fa82780fdac9dba5db59167 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in internallib_v625 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1942504b21b62677ca1a746463bfce2153d3915179537f0621e9b1adc4851b9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3906 Malicious code in mobile-test-px (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a6dd20264dd67f1ac8f83c8f321bbb06e1a3ab9b5e6d97b94d57d56dbb5c3a4e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3947 Malicious code in cp-area-nao-correntista-fgts-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8095eb5ae7705ce9b30c64714683d8be1cf363c3775707e2900c35ac10eb4a86 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3972 Malicious code in symphony-binary-confusion-matrix (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61ffb1d10faf9a2d8bc7c3f55a5c7146e5a6833835949292e731ba365a15aacd Any computer that has this package installed or running should be considered...
MAL-2025-3845 Malicious code in neondatabase (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73494ce92c6c9b63069dc80526292563ec3c1b787487708dd8a2fb0fe8c6a240 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3830 Malicious code in guardian-advanced-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 13770fcd17968777cc4e0cab25b94ac990143f0e65b24dd910678e9b3f677539 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3810 Malicious code in @support-editor/mts-editor-dist (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc17d9c05726e2b0a933d0dcd274b122d296191b9b2c1ad6ebbc29ef48c2f527 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3825 Malicious code in debug-mocha (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7992e77dae460e67006b91901d6a8a97662132bfd0b34c9fe0b6ab9d0e6ed4e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in consolidate-logging (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9195113fed51a96ead8fdad28353a287dea697bbc6c11a2514513654482b9075 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in aiide-cur (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2f87105b04445846be4b509793882c19f03cc302b5a62c868a7f5bc603d6ca1a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3962 Malicious code in dep-b (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9bf502f4603015140b50f4fa201c46f256eefa3553e9a6f91ae9304bb42966d6 Any computer that has this package installed or running should be considered...
Malicious code in mockman-js-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware edfeba68a0ab8249537859bf5e710af081fc2dbff163cdbd8af1b663966c82d5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3781 Malicious code in sw-cur (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b6e97eb66e9295d27e2c439734b0d7a8a4479ea22612dd7c5623827fcbb53eb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3750 Malicious code in @myop/react (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6207bb7fe82e114e5a3cca22ee07a6eb58b410e8e18bf5fd0945840c03761f1a Withdrawn Advisory This advisory has been withdrawn because @myop/react is not malware. This link is maintained to preserve external references. Original...
MAL-2025-3752 Malicious code in @myop/sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb5f8501100b711c468850e2985fc83d8369da105d072a9ce2543a0f189b7326 Withdrawn Advisory This advisory has been withdrawn because the @myop/sdk npm package is not malware. This link is maintained to preserve external...
MAL-2025-3773 Malicious code in util-buffers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 26051aff776c128248d32f414e8919c5c3482b654403e6cd39478705581ae697 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3760 Malicious code in dependencyconfusion6 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fde19a45f6be5b0f2c1ffc00fb381166f7ec0cbb3d1df2ba0d3e169faedcd72a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in atlaskit-registry (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a82f51289bb90a9a96816fcf188b81cd24166b48cac9cc66d28af7e68e1acc1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...