Malicious Package

Overview esm-package is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

Malicious code in esm-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3efe53ebf45af2f0e8bd58b829f79db6f064cef648ae981ea86a7e24b77a39d2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-41821 Malicious code in esm-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3efe53ebf45af2f0e8bd58b829f79db6f064cef648ae981ea86a7e24b77a39d2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-39289

A code execution vulnerability has been discovered in the Robot Operating System ROS 'rosparam' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability stems from the use of the eval function to process unsanitized, user-supplied parameter values via special converters fo...