13 matches found
EUVD-2025-29240
Malicious code in bioql PyPI...
CVE-2025-59330
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
[email protected] contains malware after npm account takeover
Impact On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect cryptocurrency transactions to the attacker's own...
GHSA-6JP5-HH4C-8C5H [email protected] contains malware after npm account takeover
Impact On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect cryptocurrency transactions to the attacker's own...
CVE-2025-59330
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
CVE-2025-59330 [email protected] contains malware after npm account takeover
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
CVE-2025-59330 [email protected] contains malware after npm account takeover
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
CVE-2025-59330
The CVE-2025-59330 entry concerns the npm package error-ex . A phishing-driven takeover of its publishing account led to version 1.3.3 containing a malware payload that attempts to redirect cryptocurrency transactions from browser environments (e.g., MetaMask) to attacker addresses. Local/server/...
CVE-2025-59330 [email protected] contains malware after npm account takeover
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
node-error-ex 安全漏洞
node-error-ex is a library by Josh Junon Personal Developer. A security vulnerability exists in node-error-ex version 1.3.3, which stems from a phishing attack resulting in an account takeover, and a malicious version that contains a specially crafted payload that could redirect cryptocurrency...
Malicious code in error-ex (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 59f26605a6bcebfcf57f0c0d4a5309f362ad7211b4bea412366a96e93a4db054 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-46975 Malicious code in error-ex (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 59f26605a6bcebfcf57f0c0d4a5309f362ad7211b4bea412366a96e93a4db054 Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in @zittertea/libero-error-ex-enim (npm)
The package @zittertea/libero-error-ex-enim was found to contain malicious code...