MAL-2025-6802 Malicious code in sendbird-uikit-testing-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ca3c517cac33d5fa40994b1304bd775f28b7cc7abbe7781a8f98db43839a47ab The OpenSSF Package Analysis project identified 'sendbird-uikit-testing-tools' @ 1019.0.1 npm as malicious. It is considered malicious because: ...

MAL-2025-6738 Malicious code in nio4r (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-6263 Malicious code in package-with-conditions (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f084cb6652819e6611585205ff40b4194ebfbedb7d9a43aaaf29f0c4ac8e8828 Any computer that has this package installed or running should be considered...

MAL-2025-6029 Malicious code in @isfront/locale (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a70aa8c59bc393d5df205527b22e5db54e16ea4c7e36278003fdce1ab03b9c0e The OpenSSF Package Analysis project identified '@isfront/locale' @...

MAL-2025-5476 Malicious code in web-app-activities (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-4992 Malicious code in just-config-data (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8f014f07f8a3583cf07008dc133b2276390b17d34f6eae237b48210437247544 The OpenSSF Package Analysis project identified 'just-config-data' @ 0.0.3 npm as malicious. It is considered malicious because: - The package...

MAL-2025-2604 Malicious code in tree-sitter-erlang (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 712279ef7d69026b60fa7e5d9007249ac05502576b2a1164da1dbafca2be44f7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2348 Malicious code in k8s-deploy-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 84c86c15f129692c3b73b16951c9f12754789e3a5ea36e3e5d517e05c7e0231b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1676 Malicious code in zohodeskportalsdksampleappsreactnative (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 46d46cb1be5475917e2e2ec917b43cb05d3a0382d2fc6b288f7fc02089399be5 The OpenSSF Package Analysis project identified 'zohodeskportalsdksampleappsreactnative' @ 5.1.0 npm as malicious. It is considered malicious...

MAL-2025-1506 Malicious code in mygcpconfusedfunctionpoctestpackage (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d791e46a1741fda065be23dc9ee80e6237ac32eeee9718c46c2f50070d84c30f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-719 Malicious code in dummy-loosesight-gd (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6b81116d25d562a22553f836d8de86b6e893c999b837eab90bafce90180f8dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-602 Malicious code in openbet-access-controller (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dd796ac609bd9ccd763f039c5ecfd7fd63b7c76170f3feaba70a4d2148fa881 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12123 Malicious code in mattermost-developer-documentation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8f5ce1bed6d6701617a1c4d5125a25fb8a534572644617c724fa576c1244ab4a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11840 Malicious code in resultstore-search-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85736ae7368ae102434c7881aa59599a9d612a91f34c7b4f443f3604c21f60c8 The OpenSSF Package Analysis project identified 'resultstore-search-client' @ 1.0.1 npm as malicious. It is considered malicious because: - The...

DLink DSL-2640U - Unauthenticated DNS Change Exploit

Exploit for hardware platform in category web applications !/bin/bash D-Link ADSL DSL-2640U IM1.00 Unauthenticated Remote DNS Change Exploit Copyright 2017 c Todor Donev https://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg Description: The vulnerability exist in the web...