Malicious code in apple-appstore-server-library (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ffc44075c7a6123e6fd516c9e8c1abbd98b481d26ae67ee10e814bec86bbe7a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

VulnCheck KEV: CVE-2025-3935

ConnectWise ScreenConnect contains an improper authentication vulnerability. This vulnerability could allow a ViewState code injection attack, which could allow remote code execution if machine keys are compromised...

Malicious code in borsh-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 51f002385b3c94048b1a161d8afd15fab61c24c5e54a4a23d9020a22313bd3f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11143 Malicious code in http-proxi-cache (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e84be68adfa639d49b259a418c9b32704e9c1bbfa4700454da562343aa27f701 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11138 Malicious code in distdiscord-v11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b003b8e11ce73b0dd1259da43ba682eb4a34b0ac0d4b48559af5bc6489c216be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11150 Malicious code in notworking-v1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da772f6092546f23222b6903ba819da287d6088d1a5e448aefbd364e65498413 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11141 Malicious code in evil-package-for-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a239752739844b809432df8dcc829f77e1a30400c98e4d475d703d3fd7dceb34 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11128 Malicious code in agoda (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8556377fff6ad9dfc3bb12eac1be9583621abe348598c4a9a835c3103eb76089 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11108 Malicious code in sync-ghes-actions (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6392f0dcc6aab8ef4f6f380e3278d8b439e146ff540bd1c9e5b445a71ee577cf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11091 Malicious code in shopee-loading-report-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b027f729f23aeb1a25823e0830424ef01aa550f6b36a5c865d6ff296df077c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11090 Malicious code in shopee-guide (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc06d13ccc231531820e72ba93e5481216f7b79cf793065d0260d0e316cea20a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11094 Malicious code in shopee-ui-automatic-import-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6e30109d0ce569668c54f7d030ae4d33fd3858572a05996c3a53877d48629ef8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11038 Malicious code in fe-prometheus-report (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 985893f86a88110b578b46b480afeeea3cece69b7d81e7ce6c54a5bb36d54ed7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10937 Malicious code in lito-core-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a6cf4549a9eb56f566a4f9b2f25568406b0ba7ed7d72c19ef13a615c6c0cdffa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10607 Malicious code in bitcor-mnemonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 72b64aa1479d9e5fae10ef50a34b24b32b9bb09f98fd3bc301e6954ef6bffe82 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10619 Malicious code in monro (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 104d28b7b321b5dbca66770dcfcb8cdf2033bd8a4e8c83cfd2669d5e2bdb54a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10439 Malicious code in trufel (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d86a742d041b19705edba4466a1fbcb6df551d110ed63b40b34e222b6e8821e4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10389 Malicious code in pupeteer-har (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 29c5aec1082b7aaaca7ba03715be8a3319d84027ef3fff58e5d808622a6bc074 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-10337 Malicious code in pupeteer-record (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c84f1706624205e21ef071dc91821f8d234138504f1458d980864e2dbfb38b81 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9371 Malicious code in gvjtly (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca5bed858b30f81e55f21887add0cd3d3d1820054f304dbb5ee451b6b429031b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...