2729 matches found
MAL-2025-2096 Malicious code in bitget-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 06e640734ec5e28eb4cd980ba22401e01aafb30604056e6ce588cd9df053229b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2134 Malicious code in upbit-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7391f484ff16261f5d67a14345fd40f488d3bd82c97ee08473b69af879adc46f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bitget-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 06e640734ec5e28eb4cd980ba22401e01aafb30604056e6ce588cd9df053229b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in latoken-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 114715a83c1f9537c15f2feab2c357a4cece3c946d5295dd133ee53efb347fd6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in whitebit-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 847bddd37490fd2ab6f55b03e72b5a71f355721caadcddb82310262d39916056 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2145 Malicious code in whitebit-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 847bddd37490fd2ab6f55b03e72b5a71f355721caadcddb82310262d39916056 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-1716 picklescan - Security scanning bypass via 'pip main'
picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craft a malicious model that uses Pickle to pull in a malicious PyPI package hosted, for example, on pypi.org or GitHub via pip.main. Because pip is not a restricted global, the model, when scanned with picklesca...
Malicious code in main-branch-check (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8be08fa3cd592a6d15f6524eac04c1935a0fa11215c4143121b34e3a0de18e15 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1524 Malicious code in main-branch-check (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8be08fa3cd592a6d15f6524eac04c1935a0fa11215c4143121b34e3a0de18e15 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-1587
A vulnerability was found in SourceCodester Telecom Billing Management System 1.0. It has been rated as critical. This issue affects the function addrecords of the file main.cpp of the component Add New Record. The manipulation of the argument name/phonenumber leads to buffer overflow. Local acce...
PT-2025-6610 · WordPress · Formcraft
Name of the Vulnerable Software and Affected Versions: FormCraft plugin for WordPress versions up to and including 3.9.11 Description: The issue arises from a missing capability check in formcraft-main.php, allowing authenticated attackers with Subscriber-level access and above to export all plug...
Malicious code in bithumb-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 900f6956e80a6ac7b93daf1bae288b01fb928e3f80a3beb36d063cb44ebaf8f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1397 Malicious code in bitstamp-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b47b2bc18b088e918e9f0a119c786790456bccd97013b5561c3a593b09b6d0ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1394 Malicious code in bithumb-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 900f6956e80a6ac7b93daf1bae288b01fb928e3f80a3beb36d063cb44ebaf8f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bitstamp-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b47b2bc18b088e918e9f0a119c786790456bccd97013b5561c3a593b09b6d0ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1422 Malicious code in kcex-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 250e2784873b2d4ccedb1c0017d13580afe0f3a3c3d956afeedcc1b962cc197d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in pionex-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 920e3da8486469505238abd948067c96de94fbd869e6732782e06809f4fd7902 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in kcex-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 250e2784873b2d4ccedb1c0017d13580afe0f3a3c3d956afeedcc1b962cc197d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in weex-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b584007c16319ecc4cbb0dadad514e12e33872b44707c476ea044b163bfc335e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in coinw-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3fa00c723741623254392df4efea8cb1992992ec41b9cbd448a7d3b478759cb8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...