3 matches found
Malicious code in config-cordova (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6be890bb2add4317485a3489a291b37fc52ecb9b16d9d5f5f1a6c67421c14c6 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-47300 Malicious code in config-cordova (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6be890bb2add4317485a3489a291b37fc52ecb9b16d9d5f5f1a6c67421c14c6 Any computer that has this package installed or running should be considered fully compromised. All...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...