311912 matches found
MAL-2026-828 Malicious code in @reimorg/config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b715386d6331820f6ad234559c9b38d82c81bd4e0ff2ba695a8f509a4a0b9d81 The package @reimorg/config was found to contain malicious code. Source: ghsa-malware 01b3357726455a4a24aecc9b4255f7ea96cab434482b28a50e5d48f06e3cf1d...
Malicious code in express-configer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e492b9087ab21198777e586b9d21eade1fe2948bb67f1ab484c7274056861276 The package express-configer was found to contain malicious code. Source: ghsa-malware 8484436a0b43b94054c0fa7ceb955362a6557d9bef3019e2fae2e51e42ff1f...
MAL-2026-833 Malicious code in express-configer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e492b9087ab21198777e586b9d21eade1fe2948bb67f1ab484c7274056861276 The package express-configer was found to contain malicious code. Source: ghsa-malware 8484436a0b43b94054c0fa7ceb955362a6557d9bef3019e2fae2e51e42ff1f...
Malicious code in aligners (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d584eeb0828c4c86b7ae383fff091f8bb711aff14a9d8a507bfdd0ada40ecb5 The package aligners was found to contain malicious code. Source: ghsa-malware fa92eba5bbd1fb9325eefaa7c363cd2827b4b4e381776d06090a0cbb001d96af Any...
MAL-2026-830 Malicious code in aligners (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d584eeb0828c4c86b7ae383fff091f8bb711aff14a9d8a507bfdd0ada40ecb5 The package aligners was found to contain malicious code. Source: ghsa-malware fa92eba5bbd1fb9325eefaa7c363cd2827b4b4e381776d06090a0cbb001d96af Any...
Malicious code in chai-as-approved (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f623e45c7742d5a9190e736f51777bae77297d5abeafd8c21679bd40b729034b The package chai-as-approved was found to contain malicious code. Source: ghsa-malware da0fdbfe00f6e097edd25bc90bfbac03e97c871951995b5d58f06b348d39c8...
MAL-2026-831 Malicious code in bigmathix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b200be57a4cdb466d56397968f69dd3845955ced56c5229608dbf03762106ff9 The package bigmathix was found to contain malicious code. Source: ghsa-malware 5fce43c0e03186c2441c8a54be7cb130625459fe9179665e242f223f0c7d2944 Any...
Malicious Package
Overview graphflowx is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Malicious code in graphflowx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4266b530d4c7c33d31f0b615033dac2a3a57218c537f1d13449342f0fbbc29b The package graphflowx was found to contain malicious code. Source: ghsa-malware d297a9f3d4e974972015d3869473fee386c696410e1746be7088d2ad5d0bf69e Any...
MAL-2026-827 Malicious code in narrow-array (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 508eafee6916ba29ade3caf0722e7bffe693e53fa35a4e74f0dc385950778f34 The package narrow-array was found to contain malicious code. Source: ghsa-malware 8bbee1a11c9aa9d6feb751063161f9802c6245890a9764cdddf190d3357df462 A...
MAL-2026-823 Malicious code in ntoutils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 15b6e8b1974bbd5ee6ee5e5abe0619080d87644b200fd8fc410f70a2f23213ff Importing the module downloads and runs a remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Authenticated Remote Code Execution
n8n is vulnerable to authenticated remote code execution. The vulnerability is due to insufficient validation and restrictions in workflow components, which allows an authenticated attacker to execute malicious code on the n8n service, potentially leading to full system compromise...
Malicious code in jwtdotenv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bafc6df342437c7ecab65fac0d10d4f37deb16e983a008ae6d87ee4dd368b4c6 The package jwtdotenv was found to contain malicious code. Source: ghsa-malware 30cfddaf043abb6549e21d69c8b779ffe56c9db1013cd885c6ee955a14ec4aeb Any...
MAL-2026-821 Malicious code in jwtdotenv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bafc6df342437c7ecab65fac0d10d4f37deb16e983a008ae6d87ee4dd368b4c6 The package jwtdotenv was found to contain malicious code. Source: ghsa-malware 30cfddaf043abb6549e21d69c8b779ffe56c9db1013cd885c6ee955a14ec4aeb Any...
Malicious code in json-mapping-sources (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 77824e69a815d8ac27a50bb52fa0a39fe2c7e512e6597d3aefd500b0eae847e8 The package json-mapping-sources was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-svg-handler (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63577e9faa19bf76dac1f171ee006ed6801a0726d5782ae1246bde01b508a7ad The package react-svg-handler was found to contain malicious code. Source: ghsa-malware...
MAL-2026-822 Malicious code in react-svg-handler (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63577e9faa19bf76dac1f171ee006ed6801a0726d5782ae1246bde01b508a7ad The package react-svg-handler was found to contain malicious code. Source: ghsa-malware...
MAL-2026-818 Malicious code in thecorrectjames (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 53ae167216303d3e0d2eda2b5321b60fc5bf9431e16ae0caa507123ba45661a1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in @skyeng/libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4b92505d9c0107026c2298d6ec8da504657990b61e40754b62b2cb8e1bd5a0b The package @skyeng/libs was found to contain malicious code. Source: ghsa-malware b4801b107979e502d4889dc729885a390ebfc2db995cd1b2fd23d27e09613a1b A...
MAL-2026-816 Malicious code in @skyeng/libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4b92505d9c0107026c2298d6ec8da504657990b61e40754b62b2cb8e1bd5a0b The package @skyeng/libs was found to contain malicious code. Source: ghsa-malware b4801b107979e502d4889dc729885a390ebfc2db995cd1b2fd23d27e09613a1b A...