2036 matches found
MAL-2026-1348 Malicious code in locale-clamp-middleware (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e27ac52023546a1eba07c629b78779bf6d13280f732fce7b0d66c18a660d90e6 The package locale-clamp-middleware was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in mabibilabub (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b5848598772336361b5ae5218b3379ba6b80420c35d0ef05fcfae6d82688a29 The package mabibilabub was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-1349 Malicious code in mabibilabub (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b5848598772336361b5ae5218b3379ba6b80420c35d0ef05fcfae6d82688a29 The package mabibilabub was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in fastapi-requests (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8e414a858711540d25b63ced50114d396e150157b65a70056beccc38948a4199 The package clones a legitimate library and contains hidden code that executes remote scripts. During the analysis, the remote code was no longer available ---...
Malicious code in pdfjs-dist-fourth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcaf355459e8baaef860a557036e51431e6eb6c44dcba0e800579cf978f2f64d The package pdfjs-dist-fourth was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in nf-referral-backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffb611867bc3ba4676e51a8f14605087e805e92819becb23a5be2629a5418317 The package nf-referral-backend was found to contain malicious code. Source: ghsa-malware...
Malicious code in @molb-prelogin/gobiz-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2a95b0b5cbb552848c3740a99b78d968f3cef00df645e9314604255a4f0507d The package @molb-prelogin/gobiz-config was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-1227 Malicious code in gaia-marionette (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81308c35c4cad5bf3f87f791133f9aff53485b715060135829785be1d33b2e1d The package gaia-marionette was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-1216 Malicious code in pdfjs-dist-v5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5827ccd19d073818da31059d76a725b171d1fc793a4f2591ed0118a35b46c35 The package pdfjs-dist-v5 was found to contain malicious code. Source: ossf-package-analysis...
OpenClaw has an unspecified vulnerability (CNVD-2026-13375)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security vulnerability that stems from the fact that the confirmation dialog box for openclaw://agent deep links only displays the first 240 characters of the message but executes the full message,...
Malicious code in jquery-display (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0873d8250c8747e1115c2866076509122f7e9ea8f4dde4dca4920d0f31f4874 The package jquery-display was found to contain malicious code. Source: ossf-package-analysis...
CVE-2024-10938
The OVRI Payment plugin for WordPress contains malicious .htaccess files in version 1.7.0. The files contain directives to prevent the execution of certain scripts while allowing execution of known malicious PHP files. If moved outside of the plugin's directory, they may interfere with the proper...
MAL-2026-1087 Malicious code in bps-design-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f41e4d6abfba5f03e914140b0b171314ef8a614e3e03ff9685325532260a745 The package bps-design-system was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in marionette-react-view (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbf2cb3282bede4d5ddc03ed4c435fefa92ad5b6b18f51f7d7980578ec3bcf60 The package marionette-react-view was found to contain malicious code. Source: ghsa-malware...
Malicious code in foundry-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3762da1ba2c85b0e0210a98196cefcf7914ab00712944886cb47409656409ac6 The package foundry-toolkit was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-1052 Malicious code in foundry-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3762da1ba2c85b0e0210a98196cefcf7914ab00712944886cb47409656409ac6 The package foundry-toolkit was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in windowston (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a6a92aff7b9a6be04f3050f1895e2d53e77dd8c9eba110c970ab59c7d003d81 The package windowston was found to contain malicious code. Source: ghsa-malware 87bbab5dffef9e8b05cc36129ad2ac67f2c980f4b85ee393b0f23ee8fa15fd85 Any...
MAL-2026-1057 Malicious code in windowston (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a6a92aff7b9a6be04f3050f1895e2d53e77dd8c9eba110c970ab59c7d003d81 The package windowston was found to contain malicious code. Source: ghsa-malware 87bbab5dffef9e8b05cc36129ad2ac67f2c980f4b85ee393b0f23ee8fa15fd85 Any...
MAL-2026-1055 Malicious code in jslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11f2fdea43a54f2aac247e06fcc46c506979a5b1ccb5d178077662e61f747b74 The package jslint-config was found to contain malicious code. Source: ghsa-malware bddd0b74c730da3b118b7ef92befbc93b4b1379cc23ce7535e843151a84ae957...
Malicious code in jslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11f2fdea43a54f2aac247e06fcc46c506979a5b1ccb5d178077662e61f747b74 The package jslint-config was found to contain malicious code. Source: ghsa-malware bddd0b74c730da3b118b7ef92befbc93b4b1379cc23ce7535e843151a84ae957...