Malicious code in fca-shaon-project (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3447878cef2f81b5cf93c10db61caf84d11600727979b580e0f7611302bb645a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in imran-alldl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4135924c6afe745ca653dd855ac4bf05a7d936772e716fc817e49a7e586473c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in imran-photo360-apis (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50eee3813bcaa9eb9f2b3a96b47f8822b60b91073e385c5d3161fce029d42287 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3834 Malicious code in imran-photo360-apis (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50eee3813bcaa9eb9f2b3a96b47f8822b60b91073e385c5d3161fce029d42287 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ethers-xdc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1291aba3d0c0f6309af00246cdf38a846604fabf82d9cc352bf51f42517b0e20 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3785 Malicious code in wix-pilot (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ece1c13a8175e046cf322db45e66e2b92e54bcd72dcacc389a974c1bd7bdbf1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3794 Malicious code in next-auth-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c0038c51339b63eb3fe77a5d623ae004832f05cc831ff582362d202f30a49072 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in middy-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2680c1b38c5fec59b6d12311259c4f6af0119a326ab6f798afe61497f8ce2744 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3801 Malicious code in vite-tsconfig-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d8e87c316d95bb1306ba575056c1036de186e9370217e5fdde12d1e13cc316ab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in consolidate-logging (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9195113fed51a96ead8fdad28353a287dea697bbc6c11a2514513654482b9075 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3796 Malicious code in next-logging-patcher (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6bf5e5919b2540c762616d719c6fa3bfc0baa1dc65bb926ef097766659727298 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in aiide-cur (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2f87105b04445846be4b509793882c19f03cc302b5a62c868a7f5bc603d6ca1a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

2025-05 Cumulative Update for Windows 10 Version 21H2 for ARM64-based Systems (KB5058379)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

MAL-2025-3962 Malicious code in dep-b (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9bf502f4603015140b50f4fa201c46f256eefa3553e9a6f91ae9304bb42966d6 Any computer that has this package installed or running should be considered...

Malicious code in mockman-js-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware edfeba68a0ab8249537859bf5e710af081fc2dbff163cdbd8af1b663966c82d5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3781 Malicious code in sw-cur (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6b6e97eb66e9295d27e2c439734b0d7a8a4479ea22612dd7c5623827fcbb53eb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Cyber Cafe Management System add-computer.php File SQL Injection Vulnerability

Cyber Cafe Management System is an internet cafe management system. Cyber Cafe Management System suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter compname/comploc in the file add-computer.php resulting in SQL injection. No details of the...

MAL-2025-3867 Malicious code in @skip-partner/i18n (npm)

This package is attempting to send system information, like hostname, user, current working directory and user id to an external server --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 980936be9121e5c676851d9936d40ab77cc3e1f8be85e93a7bc081dd6c47dd9c Any computer that...

MAL-2025-3751 Malicious code in @myop/react-remote (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 029683b35472b242040bc8c08dd99e2a8f26b63ed291bff700f7a06ef0eb989b Withdrawn Advisory This advisory has been withdrawn because @myop/react-remote is not malware. This link is maintained to preserve external references...

MAL-2025-3754 Malicious code in @myop/vue-remote (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 738fc53c11f63adc8f5e382960d16715c8fc656cdb81a0950efb09e9113c8f7e Withdrawn Advisory This advisory has been withdrawn because @myop/vue-remote is not malware. This link is maintained to preserve external references...