311913 matches found
MAL-2026-816 Malicious code in @skyeng/libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4b92505d9c0107026c2298d6ec8da504657990b61e40754b62b2cb8e1bd5a0b The package @skyeng/libs was found to contain malicious code. Source: ghsa-malware b4801b107979e502d4889dc729885a390ebfc2db995cd1b2fd23d27e09613a1b A...
Malicious code in http-notifier-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 876fd5ae23d7c051fa55647bc5b152a7905505782e78ca9536b161318d2e000f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in thread-pipeline-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2d7de9849aa6d6194b8d6fdf574c6c56c3de7cb75ad338f2428fc7f1374e4280 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
GHSA-X468-PHR8-H3P3 `uniswap-utils` was removed from crates.io for malicious code
It depended on the evm-units crate, which appeared to be attempting to steal cryptocurrency...
`uniswap-utils` was removed from crates.io for malicious code
It depended on the evm-units crate, which appeared to be attempting to steal cryptocurrency...
`sha-rust` was removed from crates.io for malicious code
It appeared to be attempting to steal credentials from local files...
`finch-rust` was removed from crates.io for malicious code
It depended on the sha-rust crate, which appeared to be attempting to steal credentials from local files...
GHSA-6662-54XR-8423 `evm-units` was removed from crates.io for malicious code
It appeared to be attempting to steal cryptocurrency...
`evm-units` was removed from crates.io for malicious code
It appeared to be attempting to steal cryptocurrency...
CVE-2019-25304 Intelligent Security System SecurOS Enterprise 10.2 - 'SecurosCtrlService' Unquoted Service Path
SecurOS Enterprise 10.2 contains an unquoted service path vulnerability in the SecurosCtrlService that allows local users to potentially execute code with elevated privileges. Attackers can exploit the unquoted path in C:\Program Files x86\ISS\SecurOS\ to insert malicious code that would execute...
MAL-2026-808 Malicious code in carcent (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6672d1df7a6035da8ee0a2c7a4ed9e7e5bace551e5948fd2e7d7d31a18410a1c Package collects and exfiltrates Discord credentials from multiple sources --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in web3-sinon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6990443632c3224a5e897d1747fcd76f782eda8d020447076d59cf305b03c82 The package web3-sinon was found to contain malicious code. Source: ghsa-malware 7d195e4b1eda9212f69e313de4107deae82670a9615ec25b86c8aaaf3df0e1f9 Any...
MAL-2026-807 Malicious code in web3-sinon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6990443632c3224a5e897d1747fcd76f782eda8d020447076d59cf305b03c82 The package web3-sinon was found to contain malicious code. Source: ghsa-malware 7d195e4b1eda9212f69e313de4107deae82670a9615ec25b86c8aaaf3df0e1f9 Any...
Malicious code in aligned-arrays (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bde941864059bf74245ed1ebf09a7be97e6a01881536ec8ad3913ddf1c1226f The package aligned-arrays was found to contain malicious code. Source: ghsa-malware 4bea95feabe1220983f2c46796cd72f198d1c4125771146d4a3a788f2fdb3b8a...
MAL-2026-805 Malicious code in aligned-arrays (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bde941864059bf74245ed1ebf09a7be97e6a01881536ec8ad3913ddf1c1226f The package aligned-arrays was found to contain malicious code. Source: ghsa-malware 4bea95feabe1220983f2c46796cd72f198d1c4125771146d4a3a788f2fdb3b8a...
MAL-2026-798 Malicious code in @rsgweb/modules-core-www-page (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23f1da0ba801a44eed5b3b909bc1630a6580ea6cd05677e6e0f4c1b2088d4e3b The package @rsgweb/modules-core-www-page was found to contain malicious code. Source: ghsa-malware...
Malicious code in @rsgweb/utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee9f14ff2b440c9d947019c65ffaa29df41116c3e35f18691cfcce733246790a The package @rsgweb/utils was found to contain malicious code. Source: ghsa-malware a9a98e6a12ac6be8573661e76ab7342baf0c83aae4d1907c482230dd5606dbc9...
Malicious code in @rsgweb/modules-core-feedback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45c68d1fafad6a94ebe843e20901dd8e5251d0b27b963d07e71ecefbd16c7465 The package @rsgweb/modules-core-feedback was found to contain malicious code. Source: ghsa-malware...
Malicious code in @sbseg-plugin/qbo-web-app-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f8f63d78f9aa713d6b2f068258ae34a81a6c8cfaa91890865506ce11475a44d5 The package @sbseg-plugin/qbo-web-app-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in @rdxportal/ui-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6715dad49a0781dc55e72ae77bd13276de1564d08cfd1c0a3c3aebf37b72acc The package @rdxportal/ui-components was found to contain malicious code. Source: ghsa-malware...