Malicious code in atlas-websocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8650c05b42abfbb5a69f65d884b445fcd038d3c56563d3ce5341af221bf80db4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in next-tab (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5cabe10794524f4f4cd9eaef39f3eb0a9ac3a110d7d5d5c4f58ff804630ec097 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in poc-by-shahwar (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6381347b8b3c6e2f8f2d7aa1b39647e7f7444e10122cd821b80ae6b3d05c5a7e The OpenSSF Package Analysis project identified 'poc-by-shahwar' @ 0.1.0 rubygems as malicious. It is considered malicious because: - The packag...

Malicious code in poc-genrateed-by-noob (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2adff977f2503f0afe5fb20e3154fa4f8c9a3d0fa5dc7a96613fb5b9434673b4 The OpenSSF Package Analysis project identified 'poc-genrateed-by-noob' @ 0.1.0 rubygems as malicious. It is considered malicious because: - The...

Malicious code in evil_gem (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e1cbacc9bc6d36bcde7b6cb93df89df1fae5c8f70a841dc916a8ba6cdad2ff95 The OpenSSF Package Analysis project identified 'evilgem' @ 0.1.0 rubygems as malicious. It is considered malicious because: - The package...

Malicious code in bankingbundleserv (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 11d0774b33f78f227976431b5b5ac240301146f64ca2af26a489ff5c59a167b5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in userrelationship-paypal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 522db266cc5ee9a741f9a3fde1a0f9e69cd84419296d3011e1e89833d068d06c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in crypto-invoicer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ce45f4356717c34ab095570b175a0fa8bb5c8b2929e42e73d1997dc8fdec3a6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in upload-testflight-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0b85cfb055bb21fe8a130157631e74438e0615064c333157c718bc42337f5e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in dexter-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af68f212ffdb2522ba261549728dc70fe8cb18c52beaed06290818706c688606 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in symphony-data-map (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c3c641dfba68a53ede962e733dcc7d2fb8171eec7c4b192417a0f50066eeca7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ddataflow (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7e3628188472d3921b31929497ffb10a64fe2632cd81d96c68d5eafa7b7cf18d The OpenSSF Package Analysis project identified 'ddataflow' @ 3.1.1 npm as malicious. It is considered malicious because: - The package...

MAL-2025-2068 Malicious code in unms-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9afdcd693808bda70843549fdd063575a29fdfeb78fd1baabc86e74b3cfb868d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in qaboard (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ac2bfcab360f7de45c230b1af8580c51697bb734b65eb7d85386f00a2fe83ce Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in atpw-reactive-form (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 087c073ee5ea5ea80f9935623ee80f8efd14ca034a3f7816298c966e5ff939cc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2021 Malicious code in orchestration-types (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 446d1cd4d99a7dc69f63cc5747ff882ba95bd3db160f5d500fe1711be4897d7a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-51950

There is a stored Cross-site Scripting vulnerability in ArcGIS Server for versions 11.3 and below that may allow a remote, authenticated attacker to create a stored crafted link which when clicked could potentially execute arbitrary JavaScript code in the victim’s browser. The privileges required...

Malicious code in adyenaddon (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4954f0f5ce68df460bab2cdeec79f35ea8d3aa5eac320bf43ed08d72b1495d0d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in timify-packager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 440654aa8c74a2e41a533db2f19a6979cd5863485d40295a5d007fec08638c6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in eslint7_0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 980ef05ca84d0e674a2d52e61c74f39eaf4c01034af1ad5ef04caf3f1d057bdd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...