Lucene search
K

6 matches found

Snyk
Snyk
added 2026/05/26 11:56 a.m.8 views

Malicious Package

Overview license-checker-plus is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/24 2:47 a.m.15 views

Malicious code in license-checker-plus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66ac93280c5fc72f65d15486a69369e4d2c2b289fa6f062a6643b63137fc6aa9 Package name mimics the widely-used license-checker while shipping an undocumented lib/compliance.js module that harvests credentials. The module sca...

5.8AI score
Exploits0References2
OSV
OSV
added 2025/08/29 6:43 p.m.4 views

MAL-2025-47784 Malicious code in license-checker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a636a791b9731fe5018309c2e7890934873ab4c091520d933029f170a1848592 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...

7.1AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/29 6:43 p.m.5 views

Malicious code in license-checker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a636a791b9731fe5018309c2e7890934873ab4c091520d933029f170a1848592 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/26 9:33 a.m.4 views

Malicious code in import-license-checker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c41ca4c8119fa20f7f5915b34de59f879b77fedf237cbbf5a69e46ddbeded428 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...

7.2AI score
Exploits0References1
OSV
OSV
added 2025/08/26 9:33 a.m.3 views

MAL-2025-191765 Malicious code in import-license-checker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c41ca4c8119fa20f7f5915b34de59f879b77fedf237cbbf5a69e46ddbeded428 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...

7.1AI score
Exploits0References1
Rows per page
Query Builder