98 matches found
MAL-2026-2954 Malicious code in bmg-web-features (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95e385a0f1c1bcc075d39332c519b28aebc80cd8474cbc78baff5ce19661b85f The package bmg-web-features was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-2547 Malicious code in ixosmonitoring (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 cfca4d7a38a0805f56b3bddcef1b421a8584a4d52df7a1a22676369679347bf5 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2026-49 Malicious code in diskho (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d03f656f5769803487abac8cada65f7f7a80d04ecbb9c39633408b2c48a157b5 The package diskho was found to contain malicious code. Source: ossf-package-analysis b944051826f01c581baeba101564a1e463b08dc5ba4353b9598eff67ebddc9f...
MAL-2025-192951 Malicious code in ugc-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ffd0991cb1cc7098930838b404210022aa2667d78f2884417f449d85e90fb12 The package ugc-kit was found to contain malicious code. Source: ghsa-malware 4e44ecda4e96910709480e50046146e482992e36fb2e8429211e1f653376d123 Any...
Malicious code in elf-stats-frosty-candy-393 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9995d6c66e999d598020c6fa5202b69c01b763a586129b2190e99153e479047 The package elf-stats-frosty-candy-393 was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-190593 Malicious code in @ra-ide/logix-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d0e9dbec30cd8b41d8e4b83527959c2b2e24abd51fcdd958e18ead57f3b4bf0 The package @ra-ide/logix-frontend was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @ra-ftds/ra-flourish-design-tokens (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f72b65d4ce1abb0b35aca62b21968c19b6e8e99ec60962be31a4179ba5f22bec The package @ra-ftds/ra-flourish-design-tokens was found to contain malicious code. Source: ossf-package-analysis...
MAL-2025-48613 Malicious code in ark-experience (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3390fa937ce615a9cf2e911edd90f9f2e03376c02c4a2f1642d3c9a9fdd4f291 Any computer that has this package installed or running should be considered...
Malicious code in naftis (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb1f0b6ee3c57373a787813a9b3df26e367df1e7f1601d9986d58a352c48fa49 Any computer that has this package installed or running should be considered...
Malicious code in global-utils-helper-2025 (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-48684 Malicious code in garud-production (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in shiprocket-invoice-export (npm)
The package communicates with a domain associated with malicious activity...
Malicious code in v0-next-shadcn (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca5e9e552239df0cdd60e60db1ee3aa37558a7ae490767639b25d3932079c8e3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in nilepkg9 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
Malicious code in kreme-circuits (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 115a80b8aadb1029e4fdf7ec27a30991a73af718770b70a89211f740bbad9c40 Any computer that has this package installed or running should be considered...
Malicious code in simplemoduleonetest (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
Malicious code in brfsddd (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-47115 Malicious code in brfsddd (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-47112 Malicious code in @tr61/core-pkg (npm)
The package communicates with a domain associated with malicious activity...
MAL-2025-45497 Malicious code in pahtkit-wasm (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d3e76975e429f523a3fae3ff739755780b9f6f01a170517550cf8de743a585a8 Any computer that has this package installed or running should be considered...