311882 matches found
Malicious code in react-leaflet-heatmap-layer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2352243757a42dafc23c429819f6693b8f9a56799589414bbb527f35b1f7ed35 The package react-leaflet-heatmap-layer was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2072 Malicious code in react-leaflet-heatmap-layer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2352243757a42dafc23c429819f6693b8f9a56799589414bbb527f35b1f7ed35 The package react-leaflet-heatmap-layer was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2071 Malicious code in react-leaflet-cluster-layer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0518fae392cbcd2e3f43b08af24b6736a313bcc053d67bfece2c36c7e609373 The package react-leaflet-cluster-layer was found to contain malicious code. Source: ghsa-malware...
Malicious code in @opengov/ppf-eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9589ba5a93df27f74e2153118cf450e51df3df58d8c7abd8e4043cf28c0d8bf The package @opengov/ppf-eslint-config was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2065 Malicious code in @opengov/ppf-eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9589ba5a93df27f74e2153118cf450e51df3df58d8c7abd8e4043cf28c0d8bf The package @opengov/ppf-eslint-config was found to contain malicious code. Source: ghsa-malware...
Malicious code in @emilgroup/auth-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b1a3b316a5288730ac37792c1fa0b0b17961a04a06250cb2c9a4d36acb3e117 The package @emilgroup/auth-sdk was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2036 Malicious code in @emilgroup/auth-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b1a3b316a5288730ac37792c1fa0b0b17961a04a06250cb2c9a4d36acb3e117 The package @emilgroup/auth-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @emilgroup/accounting-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f7312877b2862a62b3e24984ff2a2165e02b0529259a51deeb6b508a2a23175 The package @emilgroup/accounting-sdk was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2033 Malicious code in @emilgroup/accounting-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f7312877b2862a62b3e24984ff2a2165e02b0529259a51deeb6b508a2a23175 The package @emilgroup/accounting-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in @emilgroup/account-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c31c8b6deb277deb631be4e0ce8b07d6896462492574a9e5b25041a9b0b6424 The package @emilgroup/account-sdk was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2031 Malicious code in @emilgroup/account-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c31c8b6deb277deb631be4e0ce8b07d6896462492574a9e5b25041a9b0b6424 The package @emilgroup/account-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in babel-plugin-react-pure-component (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b646bc72d4de0e51f408bf6b7ae00d339ea8935a44b9bd71301a76337cc9b8d2 The package babel-plugin-react-pure-component was found to contain malicious code. Source: ghsa-malware...
Malicious code in @pypestream/floating-ui-dom (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c054f1bdbe451e796bb0623296f4240c654e72b4ef794089dad3428bfed98fd2 The package @pypestream/floating-ui-dom was found to contain malicious code. Source: ghsa-malware...
MAL-2026-2030 Malicious code in @pypestream/floating-ui-dom (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c054f1bdbe451e796bb0623296f4240c654e72b4ef794089dad3428bfed98fd2 The package @pypestream/floating-ui-dom was found to contain malicious code. Source: ghsa-malware...
Malicious code in opengov-k6-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d6d3e0e21551377d17f0e85338f6ea9650b7c18f717b6e1060b1d50962ed112 The package opengov-k6-core was found to contain malicious code. Source: ghsa-malware 1370c540f2157e1e42d9edb109b0b6c57f27d35cfcfd8ebef2a5dc2d44db6e3...
MAL-2026-2027 Malicious code in opengov-k6-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d6d3e0e21551377d17f0e85338f6ea9650b7c18f717b6e1060b1d50962ed112 The package opengov-k6-core was found to contain malicious code. Source: ghsa-malware 1370c540f2157e1e42d9edb109b0b6c57f27d35cfcfd8ebef2a5dc2d44db6e3...
MAL-2026-2024 Malicious code in @mesh-helpers/themehelper (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1743b5d260ab5fc722b3c6d24903ff994a0f9e77630220b02cc8d8d036e84195 The package @mesh-helpers/themehelper was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @mesh-components/card (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c96d53100e05047008977d25b2800e9da6e1d83f42874dcf6be5ed4144d3d83 The package @mesh-components/card was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in thisismytest (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a1c269bbb834081025da993697e3e2e44db4a97e16e21f4c792ed85391772fa9 During installation, the package downloads and runs a remote executable, which is identified as a backdoor. It connects with a remote server and executes basic...
MAL-2026-2016 Malicious code in qyrm-pipinject4 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9a21af6fd1f0c3069036b62cd769efe0cd35077f9141b1454397e44561c73461 During installation, the package starts a reverse shell. --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...