MAL-2025-3492 Malicious code in graphhopper-js-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 528454d3ceaec479832ef3607c05e7f1a1f58026c1a94fcfb2b3835b952d9c2c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in myexampledoges (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f73cffbd113f766f9b5e4d0a68d2aa94c67ed0b3521da15d8afab243bdf9e24f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3499 Malicious code in myexampledoges (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f73cffbd113f766f9b5e4d0a68d2aa94c67ed0b3521da15d8afab243bdf9e24f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3395 Malicious code in dowload_ebok_warrior_cats_vision_von_schatten_die_mission_de_by_erin_hunter_djec8 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95ad41b7d930e81657da5e1021ec79a2b59e515b4b01f4e23fae8391955c88ad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3393 Malicious code in dowload_ebok_tragic_design_by_jonathan_shariat_cynthia_savard_saucier_0jkyy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4df41f6df1da311b66bb02e6bd7ede493b44f3746f30acbad2c3dfd7403166ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3389 Malicious code in dowload_ebok_he_is_a_beast_t04_by_saki_aikawa_9bj30 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ae7b1f7fe219acd6c836c06592e9b86119b37abe839810b895444e5353af436 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in echo-color (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f49c42944e8358945b0e71cfb98fe50999b199d5f3e12802e35b84c9893c5c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3697 Malicious code in poc-sim (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8bc002dd617428d821e25cfa749908affae826cf40db7db85821cb7e344418ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3294 Malicious code in windpapi-prebuild (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c10d90b2a66383524d744c13f47a50a2d7dc178d14e8dd14e6167636c4f09f45 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3286 Malicious code in ds-sudqusdqhsdhqsdzoqi (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 55eabf16c080da1e15e96342ac1293ec79b0ec3b0a1c9045829a396b3ce5c0e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in vertex-lba (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a8170a76fcb89603064ada9f6b9c67cf6806bf216e81f92cfb42bb979b77053 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3288 Malicious code in list.fuzzysearch.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5e7008d1b039aad972325f177113a9d0a1843f63cd1c83d67809a42cca84abfc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in log-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0400bb349db4659330ea5f9fe4c12f9223c56f208b6d3a709ac074229e78f913 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in camel-website (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1098fc52f4799d50da4e83a966625fba756fb0f48d2f27f3fa9b966a972d035b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3285 Malicious code in discord.js-selfbot-13 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ab72c09e960ea50f08197c72eb549889779b0936abc22064b5adc5d2600361a7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

📄 Joomla 3.7.1 SQL Injection

Joomla version 3.7.1 proof of concept remote SQL injection exploit. Exploit Title: Joomla 3.7.1 - Sql Injection Date: 2025-04-16 Exploit Author: Milad Karimi Ex3ptionaL Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL MiRROR-H:...

Malicious code in router-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fcafd9f13b763d68deff486e2c07a83a3824640dfb106f472de1e049711de470 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in fine-packages (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware efa7db7b7f29b44c0f53be5db51efa983975a15a5343fd0adf918ed6f7284c52 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in node-json-converter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ffbaad687f777a1680340dedffa3333cb8f4e0ada8e0a886e7f798a9a59ee2e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3223 Malicious code in @0xzyo/confutionrce (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4f2d1c1c9b369aed6d0d62b32d27becf33fda24166695accd6ecf90d1ece233e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...