3449 matches found
Malicious code in passport-thecity (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware defb7627134320679ac575b55c8a7ef1fa8d74d48f00766173f0214a95905c3e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3814 Malicious code in ai_challenge (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cac3284458d7620929c88bceb52c6a1050042e2974e32bf76827af876c55b4be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in spl-tokens (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 86e0efcb779c43be336174a24f04614ab82be9f92a235feaf6e344d814bb2789 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fca-shaon-project (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3447878cef2f81b5cf93c10db61caf84d11600727979b580e0f7611302bb645a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3854 Malicious code in shaon-media-downloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 558572daf3fc57c68d96e761789af95252072a63def7fbecefe3ff6d8ba5ab9d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in webpack-cli-v4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6923a0b0ac00b6df0f50acbb796a23891fbe7d857f5f130a62b03f3a7cea9da8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in next-auth-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c0038c51339b63eb3fe77a5d623ae004832f05cc831ff582362d202f30a49072 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3747 Malicious code in @myop/angular-remote (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c529845135f67681059adf0cf2c0ef30da66673da293016d5c193e8162f8070 Withdrawn Advisory This advisory has been withdrawn because @myop/angular-remote is not malware. This link is maintained to preserve external references...
MAL-2025-3770 Malicious code in nimiq-supply-calculator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 488013c68b42615c46c340c4a4ae6645cfb0bfa492440ab3d0a89018da156379 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in digitalexp-generic-action-executor-base-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c74e71216b7e6bb7987272c4df125113848f3e422b43e05ac07e53a4358e9d85 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dforce-staking-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 51b7aa18ddef6a3d8adeb5b58454b0054055db56c5d22718d55544b309b8bc0c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3776 Malicious code in wwemix-contract (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7daf26cbd85174b1078f76ef7384573ce289257c6f91bb68462f87d436d832d5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in voting-client-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bf794ee7b143c582d6e666fee322ea82e99f42c967869b76953c90e12821c6a5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3758 Malicious code in coinpayments-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03cd3ad7581d9fc90c9a03479a13f8edcb80a999a15a2d7c2dcfc0a30b6b6ac5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in antani-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8bc6ee4654a6ce0b1ac821dfabae9daec5d7ffc8149ea0fdb78a2230493cf4f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in adobe-appmeasurement (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e2e1a6ab2727fff95ff2726535e9abc2aff5f5af6b0d3562277bff133ee14a67 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3674 Malicious code in @joshcyber123/frontend-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f8d770dd15cd82921c4fed3497ee3c3b6e58515c20307d8c8aa3f34b72a5e7ad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in outline-shadowsocksconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac9c30589865091fb269aa3d3071ffe0d15ca8b8a8848e0363d338514f8b89ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in express-cronjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c950011af67232c8c22f1787bddcbae57533443f3658b15915c7785b9279d6d3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3681 Malicious code in express-cronjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c950011af67232c8c22f1787bddcbae57533443f3658b15915c7785b9279d6d3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...