542 matches found
Malicious code in internallib_v72 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cfd62ceee47f0cd86d2f4187fac0af99eb626f31eecad5929dcd0d7797ec95ae Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in elm-lang-http (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9d5eb3c2ea771ad8d786241ffd33fd3345d71c3a00d5aa6a053d81034de8ebd4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in you-test-vue7 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7c757875559b50fa37d08dc9161180f45f2808ab8bd6a0b31113202496811eb2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in you-test-vue6 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4fd4454397046cf8aeef6561fc90938310a1172cee3cbb872c07bbddcbe909ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in tsl-card-body (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3b827feadef7c2656600460243604631e02bc0a0b8ade3e8f317a7a5964ffd7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sniper-hashing (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50c012e4494af56a19f93746e9ed8953360220771f69cc28023e8b8bb3445e69 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bithumb-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 900f6956e80a6ac7b93daf1bae288b01fb928e3f80a3beb36d063cb44ebaf8f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in holahackerone (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c18612fa91dc861c71f725e798c3acc7560a3f7735d2ec1291c3d90eec1f487f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ascendex-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 142a52b8be8d82df662a3eda8e1ac0eb272c5af8bda1ee499d710997621a8535 Any computer that has this package install...
Malicious code in deepcoin-dev (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b109e03066101d06f96d699de95cc7de90f7fe2489c1728622e18d5b39de8d54 Any computer that has this package install...
Malicious code in pnpm-sync-api-tests (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7ff8a3208b0a7303df5e44ee0ec9bcc028b58bffe1fdabfbea89ab56a78cf841 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ar2-common (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2476bf9e09f2fab60aa1b305f5cedcd81dc097e566a795a082e951ebf6c620ef Any computer that has this package installed or running should be considered...
Malicious code in html-webpack-plugin-v5 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9ed88e44f9e2966208907dcc8fd1b170e683aa017e8a706289a5bd2134e60f37 Any computer that has this package installed or running should be considered...
Malicious code in pkl.tmbundle (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b085480587244717534ecdcf4280b1dc0ed096c05f17455017033b4c0b5f3be7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in prem-ig-downloader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 06c4a6771ffd4d3e9e4aa7f3e6c28ae1761be07ad176869dac7a5067d9d9378c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in efergvthdaadgfhrgewsfqwf (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 894602cb30d010a59a8a636fbe8301d38272737acaab1eac0ccd85996644fe8d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-119 Malicious code in zqdl5552 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1a501506092121ac6523697dfaf28b43f64b742486236421aff37dece918e007 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in rafarafa_package (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fef5839fff290714b9670f7234be53a1ba5805118f3ff573e3e7340496a8c133 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in oj-odcs-product-selector (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 709903d8ce577ec3a287d787ad000d277c61e0c9a427262948b5e61986e5f320 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in uflexreward-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 12a03cd0b643eecb9171dd74f66e1916442f16b25e64f6652fc489fda6e8fe19 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...