15487 matches found
MAL-2025-2473 Malicious code in shorterapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f5eb942dbb6cb91bfe5e28567482dbc8642287b5e070aa027795d9bc79949d3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2460 Malicious code in datamations (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d84ce38228e36b03c093e2ea202e25365aba0af056a385ef287d0df4af03f109 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ramp-tax-info-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0679be505671452e55b48549ce4c786016851ea54330a9bad829775f5c786c1a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2471 Malicious code in probe.gl-monorepo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4562bdf912702598a8df806f64ea26ad5c353670348f014304ca02f45397ebec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2477 Malicious code in usedin1calculatedmember.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed860b89d268513c84a79e07ffa072fcfbdf3eccee1b2506900c48c49abd84dd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2468 Malicious code in node-llama-cpp-project (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d27e255d94f63ec3b548fa8d9ba50b8565a5b534b5d4ea838571ef729ddec60d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2469 Malicious code in panmirror (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c3385cde99d98bc2917be74ea78c8302eb62e61dfb90d33d71be4a9b71b661e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2461 Malicious code in dexter-monitor (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 004306bbcac485618bf220d12e4cf5870da6b06f07741f2efeb35b44ce3dd9da Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2453 Malicious code in @financials/using-dep-conf (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57594d4888118b288663b3c166cd3cefb4f30e8aebc4e4bed2f92a51945a33bf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in devpod (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 53e6f3bff0bcab911305fc515a84c7ccd5f1389e8e57f1ba667bdd5c24b19ce1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-0813
CWE-287: Improper Authentication vulnerability exists that could cause an Authentication Bypass when an unauthorized user without permission rights has physical access to the EPAS-UI computer and is able to reboot the workstation and interrupt the normal boot process...
MAL-2025-2389 Malicious code in key-lister (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6f9c33eb066fce6253ba86498debbec8fe000ace68796a6bddf5d95e431551b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in resolve-configuration (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cf22f1493080c3efff908ff35ce4b307f9fc4460820a84c65f7bb4129e8b5289 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2369 Malicious code in core-pino (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5db7bd8a50f90b0c2bda2716a859031b731da7ec6f2a6bdb9ebe567eb5b042ec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2432 Malicious code in vue-plugin-rely2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 40758ca258b918a5774943b38676e85d236795a65d98fe659605aa7b2f72db83 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2375 Malicious code in ding123123131 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 45c68b87a0d236585f3f6cc5b18c3d73a4948ada4344c7a0a6d97f2c81db0364 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2417 Malicious code in spark-botkit-servicenow (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware db9e7b07208198145174b016dd7c98f443f46d0605e07e3f8a84f24f58efd4ce Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2361 Malicious code in app-bridge-next (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 933905ebdc76407c4ff291a44e25a77e8a04375225a902461a37355fbc45e0d4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2365 Malicious code in build-toolchain (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 84247c237b0069d75302ed5c41a15415446a4acfd0ec02984a32130adb4e03fd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2355 Malicious code in @sp4b-dev/test-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d8e7426f9d54cc828e89c1705451a4bc027546b2b2147cefc819a8897f7895b2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...