2036 matches found
CVE-2025-51662
FileCodeBox contains a stored XSS in the text sharing feature for versions ≤ 2.2 due to insufficient input validation. Attackers can inject JavaScript into shared codeboxes, and the payload executes in users’ browsers when they access the infected codebox via a link or shared code. Connected advi...
MAL-2025-190568 Malicious code in captcha-paypal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 358456d344b5a4b2a92cb9b9094bafcf797200b5a0b6549e46175fbbfff70fa4 The package captcha-paypal was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190567 Malicious code in security-testing-research22 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64907ea19ad2bdfcd9821121cf13c4cc8445a34d72575729369913b0b7bd9084 The package security-testing-research22 was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190550 Malicious code in transparent-example-request99 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6678163799dc68caa6452a201456bd093435349d000df2dd5895fbf7b0067b5 The package transparent-example-request99 was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190520 Malicious code in node-calculator-4e41 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13eeb23685dac84d542d197d77303c42cf1157c465348c204b391edca71c782d The package node-calculator-4e41 was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190516 Malicious code in node-calculator-0f50 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37cd604b28cb577df0057a572f81e0fbda0029eb9017abcdea709811fefbc3d7 The package node-calculator-0f50 was found to contain malicious code. Source: ghsa-malware...
Malicious code in node-calculator-0f50 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37cd604b28cb577df0057a572f81e0fbda0029eb9017abcdea709811fefbc3d7 The package node-calculator-0f50 was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190515 Malicious code in node-calculator-f4d5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 342de6f4f54c5a0a4df856c6dc87100b08337f11e82519b0cc2e99c90b26c9f0 The package node-calculator-f4d5 was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in node-calculator-6a88 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d3d08012b0edb7ff8014e7fd9d38b051af2d415bc1d506a474477a85d62eaf0 The package node-calculator-6a88 was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190500 Malicious code in com.mixpanel.unity (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a617ed7539b6703818676ef051a6c12331b0e014026d1b56fb7d72775d7ad5a1 The package com.mixpanel.unity was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190499 Malicious code in filifecycleserv-paypal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f108c68df2e2b35511f57d14d387ae5fe27a28b440bcbcd2e7b55bf30b8cd6f The package filifecycleserv-paypal was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in filifecycleserv-paypal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f108c68df2e2b35511f57d14d387ae5fe27a28b440bcbcd2e7b55bf30b8cd6f The package filifecycleserv-paypal was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in com.unity.polyspatial (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76efa94c9f9541ca5cd9a534a103bd5ffebc05bb770e05ffdaf62e4af38942bc The package com.unity.polyspatial was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190493 Malicious code in com.unity.polyspatial (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76efa94c9f9541ca5cd9a534a103bd5ffebc05bb770e05ffdaf62e4af38942bc The package com.unity.polyspatial was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191841 Malicious code in python-rootpath (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bb867560d676e7b79ce110b230906a9630feb223cbcb6072bff5a2636c60a3c7 Hidden code downloads, saves and import a remote script. The package itself is a clone of a legitimate "rootpath". At the time of analysis, the remote script d...
Malicious code in ikea-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2d28e0f1a30aac98cbe4b49221df9736b6cbe4d629d85b5b57d50cc4163f72df The OpenSSF Package Analysis project identified 'ikea-test' @ 1.0.0 npm as malicious. It is considered malicious because: - The package executes...
Malicious code in netflix-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 711ffa8c0ce9379a63de3ef137c0bf569750b0d78159c94ec77e3e25b5354050 The OpenSSF Package Analysis project identified 'netflix-test' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
MAL-2025-49731 Malicious code in post-purchase-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f7c59be0aca6f22fc3b7ea58767ce53286e50138bbb75674cc2a7cdce3d1ad4 The package post-purchase-frontend was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...
Malicious code in karemv1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9be53d7d069f1115ab0b8be4e3243af9ffb512d8a6dc0e31b5395852b1cbc3cd The package karemv1 was found to contain malicious code. Source: ghsa-malware 3f4cd13aca826d2f26c0f7927f298a62ee3f5a66fcc8567eff78027b93a02144 Any...
MAL-2025-49453 Malicious code in karemv1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9be53d7d069f1115ab0b8be4e3243af9ffb512d8a6dc0e31b5395852b1cbc3cd The package karemv1 was found to contain malicious code. Source: ghsa-malware 3f4cd13aca826d2f26c0f7927f298a62ee3f5a66fcc8567eff78027b93a02144 Any...