699 matches found
MAL-2025-177 Malicious code in dbprivatekey (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c73ecb3b4cea936607074ea606da153ea262e2a30aa18950ab2565f350cb6e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-241 Malicious code in smaato-shared-ui-audience-targeting (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1fb6a2756f6c261829cb9bf265de88beb6c5b8a696325f5ffb0ae37c5acf0fb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in zk-settlement-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dc5c0e7114cd5103b7bbb1048043f0f28d424474ea5070f1024ffcda2f8309f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-127 Malicious code in hello-hamid-world-npm-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 539c20029ec03b9e0b517324e4c69c8223fb3353722028788169d41256d1ef80 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-46973
CVE-2024-46973 affects Imagination Technologies PowerVR-GPU driver. The issue is a use-after-free in the kernel triggered by improper GPU system calls (reference-count mismanagement on psServerMMUContext), exploitable by a non-privileged user with local access. Impact is local privilege escalatio...
MAL-2024-11968 Malicious code in dhp-http-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e3bd8d790ed5b426b7b312480732dc8343670572c60141f63f9a0d7df7b8efe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11903 Malicious code in hackbro (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc47c5f305fc03f562acfd324aa89273fb66507dc4c37bef544dec43fe8ef5c6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-54304
CVE-2024-54304 is an SQL Injection in the Hive Support WordPress Help Desk plugin. Affected: Hive Support – WordPress Help Desk (plugin) versions up to 1.1.2. Root cause: Improper neutralization of SQL elements in the vulnerability path. Impact: authenticated attackers may exploit to manipulate S...
MAL-2024-11052 Malicious code in mssr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 320cac8994c25e1a950677ac5dfd7d3635f0c8b9f255058719ff9b8602063050 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11027 Malicious code in ads-common-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 293ac90d50dec59b81bca66b9d0a5d8c0cda050590e84031f86b85671cdcc494 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11032 Malicious code in chokader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3fc9188621dcf2d61381969b9398101544f623c98d339bc9e0cbca1bc00d0925 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10979 Malicious code in internallib_v268 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0751f153f42313bbb9eca09f12c8ef03953b365e3670c380b17c909d1f9d8c34 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10981 Malicious code in isc-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 96b71aad1132c126b880f7eefa52b380c3f11a2ec269e036e37e8755ddb3caf6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10951 Malicious code in babel-plugin-error-context (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7744d02644a699ae9c3fbb5c30c579ba65b94f7771206aa8c11b450ab048076f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in litcore (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8432039f3deac7c4363e31d017c7298863d38aad4f91b98e48f6130325379f8f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10917 Malicious code in bignum.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9cae8d88da855b7f1d0c7666e2d5ae9cb3e0ef71c476cedabfdd84863420c452 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10676 Malicious code in byted-lightcharts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ca842ace8b18d7407e9861803cd2b121a62f80e18c489b687afb06eec1d9296 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10608 Malicious code in bitcore-mnemic (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3a72a50d12427111f0b683bda37a019abbeeee63bc70ac6278b220df90b87991 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wavs-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 23292d68d4faeef5d972ec10be124e29ba31892999b6d475b00b150885570d5e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in eth-cmeta (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e390d3f621f6795cefcac7ff48cd9734854f2734360b55599683db6ece8b468d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...