MAL-2026-4777 Malicious code in xct-x-ayoub (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d33575d7ebb1fa670ce8a2f633471492b04319daffe0f1e10dd35841cf2709af On import XcTxAyOuB, the package's top-level init.py unconditionally starts a Flask HTTP server bound to 0.0.0.0:5000 configurable via PORT exposing...

Malicious code in natazx (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0514a0df660dfc4e7380f68e8533fa325ccc246ba21855975f73d3af78cd9f0 On import natazx, the package's top-level code executes several installer-hostile actions without consent: 1 it unconditionally overwrites the host's...

Malicious code in e-learning-garena (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7f911219cc5aa6940edeb27937ddb0302356ff806c3a61185a3316cad88236cb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4337 Malicious code in e-learning-garena (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7f911219cc5aa6940edeb27937ddb0302356ff806c3a61185a3316cad88236cb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in garena-admin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 53e17b9725323610c84d0eef5b07fd9caf89a9ee0ad67d94c35a07c61abdafbb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in garena-react-template-redux (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d59bac5979a72479c1bacdf22d89116f9a1885cc09f00ca01e3717741e177c65 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4351 Malicious code in garena-react-template-redux (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d59bac5979a72479c1bacdf22d89116f9a1885cc09f00ca01e3717741e177c65 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4350 Malicious code in garena-admin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 53e17b9725323610c84d0eef5b07fd9caf89a9ee0ad67d94c35a07c61abdafbb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in garena-free-fire-skin-2022 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e64e908d121975afc34aaa1c3c5b79e15f425dbee52d585048d26e2a926ca3f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3275 Malicious code in garena-free-fire-skin-2022 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e64e908d121975afc34aaa1c3c5b79e15f425dbee52d585048d26e2a926ca3f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Unfixed XSS vulnerability at www.garena.com

Security researcher Sora, has submitted on 21/12/2009 a cross-site-scripting XSS vulnerability affecting www.garena.com, which at the time of submission ranked 7965 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 16/12/2011. It is currently...