14 matches found
EUVD-2025-29240
Malicious code in bioql PyPI...
CVE-2025-59330
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
GHSA-6JP5-HH4C-8C5H [email protected] contains malware after npm account takeover
Impact On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect cryptocurrency transactions to the attacker's own...
[email protected] contains malware after npm account takeover
Impact On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect cryptocurrency transactions to the attacker's own...
CVE-2025-59330
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
CVE-2025-59330 [email protected] contains malware after npm account takeover
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
CVE-2025-59330 [email protected] contains malware after npm account takeover
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
CVE-2025-59330 [email protected] contains malware after npm account takeover
error-ex allows error subclassing and stack customization. On 8 September 2025, an npm publishing account for error-ex was taken over after a phishing attack. Version 1.3.3 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect...
CVE-2025-59330
The CVE-2025-59330 entry concerns the npm package error-ex . A phishing-driven takeover of its publishing account led to version 1.3.3 containing a malware payload that attempts to redirect cryptocurrency transactions from browser environments (e.g., MetaMask) to attacker addresses. Local/server/...
node-error-ex 安全漏洞
node-error-ex is a library by Josh Junon Personal Developer. A security vulnerability exists in node-error-ex version 1.3.3, which stems from a phishing attack resulting in an account takeover, and a malicious version that contains a specially crafted payload that could redirect cryptocurrency...
@alfresco/adf-testing (=6.0.0-A.2-8258), @algolia/coquille (>=0.0.2 <=0.0.13) +17 more potentially affected by CVE-2025-59330 via error-ex (>=1.3.1 <=1.3.2)
error-ex NPM version =1.3.1, =0.0.2, =1.2.5, =1.5.0, =1.0.1, =0.1.0, =1.16.0, =0.0.20, =0.1.2, =0.1.3 - beelinejs-todo-mvc =0.1.1 - byte-common =1.0.0 - candlelabssdk =1.0.0 - capacitor-firebase-authentication =1.0.0 and more Source cves: CVE-2025-59330 Source advisory: OSV:MAL-2025-46975...
Malicious code in error-ex (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 59f26605a6bcebfcf57f0c0d4a5309f362ad7211b4bea412366a96e93a4db054 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-46975 Malicious code in error-ex (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 59f26605a6bcebfcf57f0c0d4a5309f362ad7211b4bea412366a96e93a4db054 Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in @zittertea/libero-error-ex-enim (npm)
The package @zittertea/libero-error-ex-enim was found to contain malicious code...