50 matches found
MAL-2026-3613 Malicious code in aoflcorp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis bfc014b9e60bb1abb58d948abcf31112dd4c160ab8416317476f3c67c2e84d49 The OpenSSF Package Analysis project identified 'aoflcorp' @ 0.0.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in housecallpro (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6e95d04cb7977b9da45686f61f19767b33fb3e4fd1af5081b1a27acfd9ee9337 The OpenSSF Package Analysis project identified 'housecallpro' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...
Malicious code in connect-perspectives-admintool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bfe776501bb847a54c18c3b5e4e57093a2d8b7bfd5daa2404ee202160ad846e The package connect-perspectives-admintool was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in 24712-pl5004 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d79bb37b62b8d47ca459db0858a93ffb3c35e3791423c11a0853fb4ab17388e The package 24712-pl5004 was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-3359 Malicious code in b2bneo-rest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81aa2ce0b474a6829ca4aa8dca5776be81b750b88d093c610de24760671b8fb6 The package b2bneo-rest was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-2700 Malicious code in conventional-changelog-dash (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 881ccc3d6c947645ee3866499931db298b0f2f7ac4a3d41dd9acf806d4e6d702 The package conventional-changelog-dash was found to contain malicious code. Source: ossf-package-analysis...
CVE-2026-40118
UDP Console provided by Arcserve contains an incorrectly specified destination in a communication channel vulnerability. When a user configures an activation server hostname of the affected product to a dummy URL, the product may unintentionally communicate with the dummy domain, causing...
Malicious code in @automation-toolchain/f5-cloud-libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2bfc189949f1db0cdc70361f74210d6fe3f92c3e69ddad9491d9c7615465f9c6 The package @automation-toolchain/f5-cloud-libs was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @adac-fahrzeugplattform/ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 779ce69d66db89d0bc1c8b82a373e6fed7e1b6a84d2cdf56bcab4b3076226f5f The package @adac-fahrzeugplattform/ui was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2265 Malicious code in monolith-twirp-codingagentintegrations-codingagentintegrations (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 24ecd94ab40a4a1b574b48137b92d60ad65d610301ee07661c928706bd54c81b The OpenSSF Package Analysis project identified 'monolith-twirp-codingagentintegrations-codingagentintegrations' @ 1.0.2 rubygems as malicious. ...
MAL-2026-2256 Malicious code in shenxun162938 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 19e684dce319a00214edebc8d8838e4402d88146cff78f1eadf297cad0e3a2ab The package shenxun162938 was found to contain malicious code. Source: ghsa-malware 0dda575a13831bf3df894664e6e2a6a107e33099c3fba68937d4ff1dde1c8317...
MAL-2026-2025 Malicious code in remitly-blog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dc307937a69a928785741aaf42f1e0e6ddea72dd3d7f7919c4ca4864d9835b4 The package remitly-blog was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-192954 Malicious code in api-umbrella-admin-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f5afbcc650f7845d47544c5033aba92c5a2ab80d2e0d27e99437ef31cc6c249 The package api-umbrella-admin-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in @ra-ide/ld-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aec551eb9431424b0e79cb127427880ebd5c21b9deb2b8d4a378fb650fb45a84 The package @ra-ide/ld-frontend was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-48684 Malicious code in garud-production (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in nileninjapkg5 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-47065 Malicious code in hrpq1wq123 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1723d1a69b33a9e203de3ca455da66ce2a37a8e1b6a65edc18c77634d2c22ae2 Any computer that has this package installed or running should be considered...
MAL-2025-41878 Malicious code in @espace-client-axafr/performance-indicator (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-41823 Malicious code in @axaclient-socle-front/redux-helpers (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in remark-canonical-link-plugin (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b975fb6f22bd9fcdcea9c2ef29c6fadc73269624920351490d8cda8e561199d The OpenSSF Package Analysis project identified...