5 matches found
Malicious code in font-scrubber (npm)
The package font-scrubber was found to contain malicious code...
MAL-2025-20748 Malicious code in font-scrubber (npm)
The package font-scrubber was found to contain malicious code...
Malicious Package in font-scrubber
Version 1.2.2 of font-scrubber contains malicious code as a postinstall script. The package attempts to upload sensitive files from the system to a remote server. The files include configuration files, command history logs, SSH keys and /etc/passwd. Recommendation Any computer that has this packa...
GHSA-65J7-66P7-9XGF Malicious Package in font-scrubber
Version 1.2.2 of font-scrubber contains malicious code as a postinstall script. The package attempts to upload sensitive files from the system to a remote server. The files include configuration files, command history logs, SSH keys and /etc/passwd. Recommendation Any computer that has this packa...
Malicious Package
Overview Version 1.2.2 of font-scrubber contains malicious code as a postinstall script. The package attempts to upload sensitive files from the system to a remote server. The files include configuration files, command history logs, SSH keys and /etc/passwd. Recommendation Any computer that has...