1360 matches found
MAL-2025-190893 Malicious code in @posthog/snowflake-export-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64fb205150fc65f2334ab9ca1530bec4ef2d4dfea99ca328bfda4c70063ed793 The package @posthog/snowflake-export-plugin was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190867 Malicious code in @mcp-use/cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d5826632c7194cdf9ed00c672477f5c1c8a250a107013f1edc0b803d948e471 The package @mcp-use/cli was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190897 Malicious code in @posthog/url-normalizer-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3af45430785d7a562e6a3ccfe29b377e17c6c71d4bbcefa7a8e4fc67e95977c8 The package @posthog/url-normalizer-plugin was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190922 Malicious code in create-mcp-use-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2781601c3ba0c5d6d4b78bf322d88a4d189473e68d2382c171106342acacd271 The package create-mcp-use-app was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190877 Malicious code in @posthog/event-sequence-timer-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db26ed26bc40e436602c36fa1c507d324e650f5aeba5a15875e59daadc8a5a14 The package @posthog/event-sequence-timer-plugin was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190882 Malicious code in @posthog/hedgehog-mode (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5b044ae176df3e6019c54c314bdf3ec17c98741510cf5c024f85a07c7e520b1 The package @posthog/hedgehog-mode was found to contain malicious code. Source: google-open-source-security...
MAL-2025-190864 Malicious code in ra-data-firebase (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e18e2fda31999ba999f5629853253dd8ff93b75237944d8c2971c2f54381cc13 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-190856 Malicious code in poper-react-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee86d01d82c77cc7c83c6d28159deba7fa26192da0ab69659d92f78f4d41cd60 The package poper-react-sdk was found to contain malicious code. Source: ghsa-malware 2c3b77a8909da7a5fe13a2fba433147468dfa75dee206eaa996325423e38244...
MAL-2025-190852 Malicious code in n8n-nodes-tmdb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a791d5a6c99e04f00686606d40149f2ab7c17572f074de1dbb9ee62ab204aee The package n8n-nodes-tmdb was found to contain malicious code. Source: ghsa-malware e992a5e0af57cdc4d581692395fdc7c00152c3b400d60f4c73f0bbc67949845d...
MAL-2025-190817 Malicious code in @louisle2/cortex-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c444e50876d5f75647d843c02c0b22a893e1129c31baca504e57985a07a2f5bb The package @louisle2/cortex-js was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190835 Malicious code in capacitor-plugin-apptrackingios (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db2b5d0386124d893499ec984d85876c5267739a62e53b776e829c3449a7cee8 The package capacitor-plugin-apptrackingios was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190818 Malicious code in @markvivanco/app-version-checker (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb3390637a7e3c1122d5f1f2417189358dec13936938bd997c1bf5949c1bb8dc The package @markvivanco/app-version-checker was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190831 Malicious code in asyncapi-preview (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ace11e1c5f0f9487098786e9c0a3b43a0491cd1a23d74b4a9dcfc67fc04c621a The package asyncapi-preview was found to contain malicious code. Source: ghsa-malware 6c99a62eec6b0d9e3b5e9e99c8cb5f10e3286c94fb0e7e44e25808892679a0...
MAL-2025-190791 Malicious code in @actbase/react-kakaosdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a48797e2088e681febf91726aa184436bf3fa96104d23f438a11b19f75ef0516 The package @actbase/react-kakaosdk was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190850 Malicious code in medusa-plugin-momo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4670d82d1db3b1865426e69d47798cb98aaed8be48cec99e86be3741872aa936 The package medusa-plugin-momo was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190859 Malicious code in scgs-capacitor-subscribe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3fb81fa33f5db11bebf15b6af6f18a63ca129349c0d7bcaf729dc27f69d63f2 The package scgs-capacitor-subscribe was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190819 Malicious code in @quick-start-soft/quick-document-translator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4837747658fccdc13c30d5359ffe43e237536140e50412ba0126afa5d6d8e301 The package @quick-start-soft/quick-document-translator was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190848 Malicious code in lite-serper-mcp-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4004eeb497395a7e5423b056c76905cd2679f242fc432352479ee7b657383084 The package lite-serper-mcp-server was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190800 Malicious code in @asyncapi/php-template (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81619d0ddfa1696b71c550ba94be4ddbdaed53aaef37376f8024945422da51b5 The package @asyncapi/php-template was found to contain malicious code. Source: ghsa-malware...
MAL-2025-190811 Malicious code in @ensdomains/server-analytics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94dd4c8b8f01e631a4c2d9a19e272458d58a22a5a20c89b97603a94e2b68c4a3 The package @ensdomains/server-analytics was found to contain malicious code. Source: ghsa-malware...