568 matches found
MAL-2025-47010 Malicious code in @pa-client/power-code-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 60c9037c2e5ca709c20fd2beb65a40e9649cbc3735c1989647ba5aae2889672d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-42145 Malicious code in logging-winston (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0433a58c0d2019ba753b2ac69bc12319ce704bc3fcf7ff537ccea2164e1e8f31 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @kodane/patch-manager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7695fde6cc3a35bd130bcdcc096ef89e7ce312c36cd9e0a15ec986d9f516873 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in storybook-core-core-server-presets-0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c26c4c0005ab8afcf7090a2e281324e67b2250f8a69956e559c51775ec00efca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in preset-classic (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c8120ab1c8e211545c22d69165ccd550b96bd77fa18731c412d73f2c2a36640 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in firefox-profiler (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4487e2a5882ebb5a6d35e69c7f4644df4cebad9ed4660d01cdcbd6d137dd82c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ethers3-wallet (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8fb5b9e90e4847906036d20312e485929a131f5272106349e82cb2538bb4b7e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in apple-keto-acv-gummies (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3431204b738da9726bd553e79f2bdb59fcc81bbb87b633b959947a1d24675da7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in flpmonitor (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74c2188031c31224b44ff20777ab414101ae7800ccf522e30f566a0bb53f37e6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in shared-workflows (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d2e9e3bd8389efce3114016d94776de4d6947e98d829761b9bb1be64e02ff66 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in grafana-strava-datasource (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c38acd1154b6064c05313534795a57d0d6e586cc8ebd1a6a353b4ccaa3b27465 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ai-gallery (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 145c781619fadc0709819a31640a54b03263dc909ad7a622ebe40b764ba21048 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @didi-pebble/pblint (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bb1531e6163d25b10b0a50538ba7b2462eea1da3199b5163aa90b8f5e4882e4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in haha-sana (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d94333a699bc404222efee057cfa9fb0a098160612cbb2f645065f273f841214 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in mark-testing (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d23383a480fcca63e03f17e636f2b8b0ac1605237d730c7ccf159e9ea082f39d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in solsafe (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c0e330c03bcbf5c40a3477fd4fa0029e71ee952bcbdc57bbaf89d39cbec85ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in n8n-nodes-zalo-tools-vts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2329810f2a1823ea41018ebaecc3088d17c44d6b40443b63ba8cf17463f898a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in poseidon-validate (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90aead430e86dd9f204e1a8db7e6adb050c5eeae8a938c3d570991ebac4c8ac4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bootstrap-modules (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a45d845a42d64eb0f9732d82ec558f52eed95f2e905ffec7f0ae2849f78104e1 Any computer that has this package installed or running should be considered...
Malicious code in spoofer-ip (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2da3af6f33c88ebffe3e46690a63880708c162a1c710ff72131cf99f3ead9674 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...