311864 matches found
Malicious code in magtape (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6f476b63043b398a38eb28706575478aab4fb04820ce16d7836e726df21a1a93 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
CVE-2025-13913
A privileged Ignition user, intentionally or otherwise, imports an external file with a specially crafted payload, which executes embedded malicious code...
CVE-2026-32985
Xerte Online Toolkits versions 3.14 and earlier contain an unauthenticated arbitrary file upload vulnerability in the template import functionality that allows remote attackers to execute arbitrary code by uploading a crafted ZIP archive containing malicious PHP payloads. Attackers can bypass...
Malicious code in jsonify-builder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b16e04dbb8a655525d1dcc95902eacad5b738ac61852151526e1e0a95447a3f0 The package jsonify-builder was found to contain malicious code. Source: ghsa-malware 4f4842e5bf9d324a472ef06cb8dc42b177eee930c375c76176e9a67f032d05f...
MAL-2026-2237 Malicious code in jsonify-builder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b16e04dbb8a655525d1dcc95902eacad5b738ac61852151526e1e0a95447a3f0 The package jsonify-builder was found to contain malicious code. Source: ghsa-malware 4f4842e5bf9d324a472ef06cb8dc42b177eee930c375c76176e9a67f032d05f...
CVE-2025-41359 Multiple vulnerabilities in Small HTTP server by Smallsrv
Vulnerability related to an unquoted service path in Small HTTP Server 3.06.36, specifically affecting the executable located at 'C:\Program Files x86\shttpsmg\http.exe service'. This misconfiguration allows a local attacker to place a malicious executable with the same name in a higher priority...
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-33634link is external Aqua Security Trivy Embedded Malicious Code Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber...
Malicious code in @zecho/baileys-mod (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e4d4b2c49e19b5e36babb83f8095290c3bd09ad9fb4065ccf3769bb9be4c53d The package @zecho/baileys-mod was found to contain malicious code. Source: ghsa-malware...
Malicious code in @zecho/libsignal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8ee9faec3b25e7b043ecc51372ef854bf184e2ff001aab3599a53f7ea006e98 The package @zecho/libsignal was found to contain malicious code. Source: ghsa-malware 772f0780752f36a5549cdf7522ace0d3374d4bdbd45e94dfe1f0407b40a117...
MAL-2026-2229 Malicious code in @zecho/libsignal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8ee9faec3b25e7b043ecc51372ef854bf184e2ff001aab3599a53f7ea006e98 The package @zecho/libsignal was found to contain malicious code. Source: ghsa-malware 772f0780752f36a5549cdf7522ace0d3374d4bdbd45e94dfe1f0407b40a117...
MAL-2026-2228 Malicious code in @zecho/baileys-mod (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e4d4b2c49e19b5e36babb83f8095290c3bd09ad9fb4065ccf3769bb9be4c53d The package @zecho/baileys-mod was found to contain malicious code. Source: ghsa-malware...
Malicious code in @validator-lut-sdk/v3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cb4c0ee3137b51767f901297bd8743d7f23109b2897aec6b659a433c5c29a86 The package @validator-lut-sdk/v3 was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2221 Malicious code in @validator-lut-sdk/v3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cb4c0ee3137b51767f901297bd8743d7f23109b2897aec6b659a433c5c29a86 The package @validator-lut-sdk/v3 was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview @pumpfun-ipfs/sdk is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in @pumpfun-ipfs/sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21604418f7961773b23e7b3544ca95874cba1432a87ae6d4127531e651133f78 The package @pumpfun-ipfs/sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in validator-lut-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c9f447a3c02a6c7ea716862009fcf6853c8d52e05144fa78746cbdbfe3ef000 The package validator-lut-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in jito-validator-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5744d7d3aef03ec852963ebeca1a6357db3aa7bc925bae6e85f173692fc12eb0 The package jito-validator-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @solmasterv3/solana-metadata-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb2f789632cf3335b655f453dde41d515dd8e267b4be563afd827fa501d73bad The package @solmasterv3/solana-metadata-sdk was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2216 Malicious code in @pumpfun-ipfs/sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21604418f7961773b23e7b3544ca95874cba1432a87ae6d4127531e651133f78 The package @pumpfun-ipfs/sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in neanderthal-validator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c122a6fe5778bb430f198abe8838eb5d20ce083dca9ee1fdda16354222d1636 The package neanderthal-validator was found to contain malicious code. Source: ghsa-malware...