Lucene search
K

4 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/02 3:48 p.m.3 views

Malicious code in kazumarii (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b0c1e0bca3468f71c95be009b3387370179aa6b8ae367dc85626c377d7f4f93 The package kazumarii was found to contain malicious code. Source: ghsa-malware d2e577d88ad909c0835d5690d3d0862a6fcce28d81d92d041b67983f31ac62d8 Any...

5.7AI score
Exploits0References1
Snyk
Snyk
added 2026/03/02 3:48 p.m.1 views

Malicious Package

Overview kazumarii is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSV
added 2026/03/02 3:48 p.m.2 views

MAL-2026-1130 Malicious code in kazumarii (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b0c1e0bca3468f71c95be009b3387370179aa6b8ae367dc85626c377d7f4f93 The package kazumarii was found to contain malicious code. Source: ghsa-malware d2e577d88ad909c0835d5690d3d0862a6fcce28d81d92d041b67983f31ac62d8 Any...

5.7AI score
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/03/02 3:45 p.m.6 views

@goldenqueen/bai (>=1.0.0 <=1.0.3), @khineeyouu/baileys (>=0.2.1 <=0.2.24) +10 more potentially affected by unknown CVE via @yaoii-bails/libsignall-node (=0.0.1-security)

@yaoii-bails/libsignall-node NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on @yaoii-bails/libsignall-node and may be impacted: - @goldenqueen/bai =1.0.0, =0.2.1, =2.0.16, =17.1.12, =1.0.13, =1.0.23, =1.0.24 - nopedorex =1.0....

5.8AI score
Exploits0
Rows per page
Query Builder