3449 matches found
MAL-2025-1158 Malicious code in packeage (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2b50411a0f653d34ae98d6d973a1c004d7fa8f67f71b7b6f07b34ed5288af404 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in csvue-unplugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 409257b16103ee7b420a285630aeb8985fe42d7e0ef833aeeed9c03d9539f620 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1087 Malicious code in cs-magnifier (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d412de7658e93719fd412b6f30d39270ed6190482deb65c00aaf002f96fe7e2a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in discordjs-webclients (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 168188008eac5d6566ff9dd1929ae45ef01c19a0f325ab680beb22b609aa1f5c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1119 Malicious code in experimenter-docs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c4c2a69d33bc5a84c51066ba601bfae3ba86437ddec7c887b6a243d444e1305 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in hantu (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b689584310501251ca99541eda1510bbf7ca1c4daeca482cd4b836af619e6fee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in setan (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eef3fa99fd3e4d15ed2b08d2e78ace1c63c6582e8af5be6dc244ab00d1e36f8c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1174 Malicious code in setan (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eef3fa99fd3e4d15ed2b08d2e78ace1c63c6582e8af5be6dc244ab00d1e36f8c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in paytm-blink-checkout-vue3-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 53da4c93e68194060525f1ea8d686d00c5bbe1e73fa09bf04fd0ccfe8de97e0d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in action-doctl (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c01cc18428c5e64e38347a9be7579cecbcafbaeec2cf75f6a004d40f036f2911 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in pulumi-automation-sdk-ssh-tunnel (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ffa176b4dcf4483a947e659d4d4855bd174744d67a8ed98dadb4ddd425e41ea6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in delete-deployments (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e14b7ca7c288fe08d7f1e3a9382e6ef56ba7abf1a6c684fee76f737dbfc2d171 Any computer that has this package installed or running should be considered...
Malicious code in flux-example-chat (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25c56a7bd2b361d914ee94cd9ec12e8fe10e84358352b4cab6490131e216dbad Any computer that has this package installed or running should be considered...
MAL-2025-597 Malicious code in compound-protocol (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af5d6716f9bf59535bb198a6a0def45229c19613577dde244bb2a4562790b3db Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-24122
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS Ventura 13.7.3. An app may be able to modify protected parts of the file system...
Malicious code in ig-lighthouse-security-audits (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 226acd90be6fefc4cd12da9d6b73604ee919205ed49e1e44f5d336b5576c3717 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ig-lighthouse-to-influxdb (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 92e8d076b669d18ea59535f03270a27adbfc6b0717789403453fabeb522b988b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ig-release (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 379d23f2972b694bbd86df7bfb1e700877bcb3762383582507d752113bbb3eb9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ebay-testa (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dd3f3c0053b693abeb7f1b4c8862702ee0b78dd5e3c1b41fd82d039ed8686109 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-572 Malicious code in ebay-testo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b784f42fec86ae414f61856ffdaa2b3f4d6be866d444892422493fff83520d14 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...