44 matches found
MAL-2025-6801 Malicious code in sendbird-notifications-extension-example (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis db0ee25cfff1ec99d94cc0e5866df17eda725c53a92c98ce3057df8f5f23c9cc The OpenSSF Package Analysis project identified 'sendbird-notifications-extension-example' @ 1019.0.1 npm as malicious. It is considered malicio...
Malicious code in node-calculator-yqhi (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-6711 Malicious code in cycalculator-ybvd (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in amdocs-core-package (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in vis-donut-chart (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-6131 Malicious code in telenet (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in google-login-flow (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-6051 Malicious code in @toptal/picasso-image (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-5982 Malicious code in datadog-instrumentations (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cbf74efed2b32abd010705d5410e78270b572065e8fc02c3a1961b4afc2585ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-5313 Malicious code in ardiffact (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 38f622f1802cccc6f5386792e6d91d4e4292e5f4f601a2662f451ec82db6fffc Any computer that has this package installed or running should be considered...
MAL-2025-5299 Malicious code in cms-media-bridge (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ecd3cb94016b2ab409b5d86ab82909b3b59b2389dd232be9049fbc7f0823ba1 Any computer that has this package installed or running should be considered...
MAL-2025-5242 Malicious code in braintree-dropin (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 975d9545344189dda20be0c6790c2deebbd8fbf1d3b992641dea6f1044521436 Any computer that has this package installed or running should be considered...
MAL-2025-5029 Malicious code in cosmy-wasmy (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 52ae3c22beee95c306b386c69c33361301618a553e2920cf5fbde155626fc84f Any computer that has this package installed or running should be considered...
MAL-2025-4932 Malicious code in uniswap-v4-scratchpad-poc (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 01754c5d133c195a4c109504b5db8355893e90a308a2317d421d8f2d034cad23 Any computer that has this package installed or running should be considered...
MAL-2025-4756 Malicious code in pages-admin (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-3131 Malicious code in dave-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5c5e4c9469fec2d35256dcb0afcf57d63e6cfcf6ef685cf0f916f05cedc34c7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2730 Malicious code in webhooks-contacts-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 823e5cf1e6fd5a930dbd702f998d1d88ae58e255f62e920b0262615ac2efdbbf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2232 Malicious code in cb4good (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c16e1ebf21c15491517654d93507f4ac7ca8aa96e47403f10fd753ef7bcbca95 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2015 Malicious code in timify-packager (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 440654aa8c74a2e41a533db2f19a6979cd5863485d40295a5d007fec08638c6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1666 Malicious code in metrics-aggregator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6cd896083dc19fbe781ed9f414bc1a72581378e63717086f459e1b03fd0c058c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...