15487 matches found
MAL-2025-569 Malicious code in ebay-testa (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dd3f3c0053b693abeb7f1b4c8862702ee0b78dd5e3c1b41fd82d039ed8686109 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ebay-testo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b784f42fec86ae414f61856ffdaa2b3f4d6be866d444892422493fff83520d14 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bookingcom-checkout (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 68d25686015085f4d524b134542a14b1748266da0711ecc36ae2a59afe2abebf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-367 Malicious code in webpathaxios (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7f7c0093824fe0d8cfd7562d8767a2c04967a0b885c02909ee03dc66cc5cab76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in equipment-icon-mapper (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a99f570aa2c31d84f2b2e487af42792418ce952fac2bc39d603ad1899f27230f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-363 Malicious code in self-bots-dc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d57d5a05bea1dda9fbc71d4016a47c33f2a89150eef13a97d587db0329a7e7c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-343 Malicious code in packs-starter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4f277f0e30c3047df016449f4c4f177cc9201318817736f3871eb938d0f24cfb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in op-vscode (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc75870385e27f624816db6a388a5a188640a523bb7d967dbb848ac33dda21b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-327 Malicious code in 1password-sdk-exapmles (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 98366c77213b87d7622472828c95aa7590386458d140ad0a0b31a86afde5b6ee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-347 Malicious code in text-unicode-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 496da7ca3ce0ba4c51df629157528f475e4488ae357c90bb638664642eacd926 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-344 Malicious code in passkeys-resources-website (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5256b8944e68915e19451b582ae574907838c2157234efe3f5290b6330ac3439 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-338 Malicious code in libcrypt (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 65114ab78e2e9c6bdb0302cf5091d6177a082c11eb4dda08a2aff13d5a0a9c18 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-360 Malicious code in arcus-cmd-utils (npm)
This package executes a base64-encoded script to download an Electron-based infostealer binary, aimed at exfiltrating cryptocurrency wallets, credentials, and other sensitive data. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware...
MAL-2025-300 Malicious code in plans-grid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04b1c05ad3cb73c09f30ded556f336a88920f11ce91cba56ad301b3dd88ffd21 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-313 Malicious code in social-previews (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fab6484159a8754b4345d5eadcd2182865514fcfa93f939fe2999845cf79a803 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wp-babel-makepot (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d331165ce76baeaab9aa529ff1ad7c5ee9ce1f76032d4ea0db72ca744a2a0f76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-314 Malicious code in tour-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 44bfdd42ccd9f1335cf7f7b07ba399341a0a93af1c683563cf6a63697518f580 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-307 Malicious code in sdk-coin-bch (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c438437d2b489e7c765c8ee7c5acc09b5f162251963c40844c5f12f8d90d2fab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-312 Malicious code in site-picker (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 08f1194c6e49d7adf88a2a70415fcd789fab720cf63e7121963cff8fe1195fc8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-305 Malicious code in sdk-coin-avaxc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae63f0d13a276525ec64ddd6d3b51601a6bb091953e45d505ccae7e2778574c2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...