560 matches found
MAL-2025-49074 Malicious code in xo-tracking (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 99bf711c41656a6263989c743ebb667fca6ffbe7e749e7bacb698540cea9ffd9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49059 Malicious code in typescript-compat (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0acc4ba0bcbd7793656800efb10926d4044fa65326e8bee88e9b92d2504bc668 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-49000 Malicious code in express-redact (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4f7506bc61afb104333b21673f4899d6ea5e6982fcb1be7623fafcb4f5580a7 The package express-redact was found to contain malicious code. Source: ghsa-malware a883eba91191de6920dc8a2f765112365ac2835f16dd0918d3750d99a89cc9e9...
Malicious code in @jameson777/mytest8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b156e6ec35304232881859a1a11917ad7244fcea63f2683ef1a381098858d9d The package @jameson777/mytest8 was found to contain malicious code. Source: ghsa-malware...
MAL-2025-48591 Malicious code in chalk-ipheriv (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 14aef23722696ac10bcadbe24bba51c3dbdc0e9b1e0aa9477a91bc90d59cd48b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bad-santa-claude (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2f3ae5211cbede196c8612c8e14c54147ab8c3984a6d1d26675336e526316bae Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48541 Malicious code in @jdei/codmi-figma-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8fecfd138476c3c3b51878bce2a48c0b9d4ffb9f2d5476a90edeef147217eb29 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in artyfact-storage (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3e7943603e230dc9bc1cd9f5f44133fe1b4fee90cb69929ae4b0308b61400753 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in package-f (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1deec43d176fc23dbd4cb44b3e1d4e90821cb98e441004f83c872d49ca281ac9 Any computer that has this package installed or running should be considered...
MAL-2025-48326 Malicious code in internallib_v190 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 75787b9471cecb41a09915fbec6bf00bf40073c0f2da3ad342ee9fb1c83a366c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in scr-cloud-project (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c714f60369d28f727a675effd525b4208077e225e46026b537d7606d48708a9a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48341 Malicious code in scr-cloud-project (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c714f60369d28f727a675effd525b4208077e225e46026b537d7606d48708a9a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48300 Malicious code in lovable-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2bdd25899ff870aeb3b0ade0eb3b9d360a82f3a71dd4dd872e8f3dc4019ce982 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48298 Malicious code in matrix-charts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec928e940d4a9d80d7e512630b842c44283854acb9421a3ecb97c288f07fb7a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48271 Malicious code in advertising-charts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3e0d648b7b4026cddfac170e95dee7ace2e607be7c21ce885f7ac237135e3478 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48241 Malicious code in bird-clean-sky-request (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0d4690255e702b2e0003068c76afd1666551d9e315ff93105a769b6250d46469 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-j0rs4a (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fa8ebbe3a98e48894b9cfffa97f0333cf86c69c8a576131d18032d4bc0ea3767 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-icp3vd (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f43ce8e85b926ae6c1233766723a657d9565be6422a63383c2b73b15a3c9525d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-48207 Malicious code in redirect-qbzqro (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 33232292b94991718f7dc9e3044578cf9cff875e62f2025617495095a2b6ee30 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in redirect-cn040w (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25a017e32cbceb0365c659a0fc3f0649a71d0b52774c3d8002bcc808baa4d086 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...