5 matches found
EUVD-2025-179226
Malicious code in dynamo-schema-higgs-geoarchaeology npm...
Malicious code in dynamo-schema-higgs-geoarchaeology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ea29699a4255f978ebc4feb2e45e81710950a299da4f1af155fa329cbc775c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
GHSA-VP8G-53FW-R9F2 Malicious Package in dynamo-schema
Version 0.0.3 of dynamo-schema contained malicious code. The code when executed in the browser would enumerate password, cvc, cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation If version 0.0.3 of this module is found installed you wi...
Malicious Package in dynamo-schema
Version 0.0.3 of dynamo-schema contained malicious code. The code when executed in the browser would enumerate password, cvc, cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation If version 0.0.3 of this module is found installed you wi...
Malicious Package
Overview Version 0.0.3 of dynamo-schema contained malicious code. The code when executed in the browser would enumerate password, cvc, cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation If version 0.0.3 of this module is found install...