Lucene search
K

5 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/16 12:0 a.m.9 views

Malicious code in pear-wrk-wdk (npm)

The package 'pear-wrk-wdk' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server npm.jpartifacts.com...

5.5AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/09/02 1:42 a.m.5 views

Malicious code in @diotoborg/aspernatur-in (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2db9352ce5aeccd44ca3b1ffcae6aca686f8859bb9797ca54c770a8fa6700815 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/09/02 1:42 a.m.7 views

Malicious code in @diotoborg/quia-harum (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 36e96c5096009919782abeb8222b712a4cd7bc67592838577c9bdfb7fc4abd83 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/08/19 3:55 a.m.5 views

Malicious code in 0supportscolor (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c430a61fb64569c2e4ee9d61d852f0189d613b8a916487edce0ba29c2ac69e9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:23 p.m.4 views

Malicious code in thesis-form (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8878bca276c410b3043886cc4e1292d4991c909a98078d879690ac7c2671a1ab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder