311915 matches found
Malicious code in sandbox-hooks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de188418d12a5397810d78eeeb5b8e939a4fc430f8c2aa3113e7fa3a5360e2c8 The package sandbox-hooks was found to contain malicious code. Source: ghsa-malware 7d12de65eeb03f7f648a293f5f7217cce1215878610d2bf4f973cd510733eedb...
MAL-2026-522 Malicious code in magento-coding-standard-eslint-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 181566f148b6cac8ad613b2942849254b7a6968bbe5e16a9d009aaa8e4184b25 The package magento-coding-standard-eslint-plugin was found to contain malicious code. Source: ghsa-malware...
Malicious code in magento-coding-standard-eslint-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 181566f148b6cac8ad613b2942849254b7a6968bbe5e16a9d009aaa8e4184b25 The package magento-coding-standard-eslint-plugin was found to contain malicious code. Source: ghsa-malware...
Malicious code in mapkit-example-svelte (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7e50c0bfa7ac259128381d1495bc907b68e4721214789ed3316c0a57e387175 The package mapkit-example-svelte was found to contain malicious code. Source: ghsa-malware...
MAL-2026-523 Malicious code in mapkit-example-svelte (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7e50c0bfa7ac259128381d1495bc907b68e4721214789ed3316c0a57e387175 The package mapkit-example-svelte was found to contain malicious code. Source: ghsa-malware...
MAL-2026-525 Malicious code in sandbox-hooks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de188418d12a5397810d78eeeb5b8e939a4fc430f8c2aa3113e7fa3a5360e2c8 The package sandbox-hooks was found to contain malicious code. Source: ghsa-malware 7d12de65eeb03f7f648a293f5f7217cce1215878610d2bf4f973cd510733eedb...
Malicious code in @afg-ikea/ikea-modals (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec5202678b3acce22244ccd41e821e68167ca297f94450cb3b5debeac9ec2c50 The package @afg-ikea/ikea-modals was found to contain malicious code. Source: ghsa-malware...
MAL-2026-519 Malicious code in @afg-ikea/ikea-modals (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec5202678b3acce22244ccd41e821e68167ca297f94450cb3b5debeac9ec2c50 The package @afg-ikea/ikea-modals was found to contain malicious code. Source: ghsa-malware...
Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f627f92f7e8b9ae99be35718e43eb73ed63a8818cea75a131f4bf85738cab2c3 The package @afg-ikea/ikea-kiosk-related-components was found to contain malicious code. Source: ghsa-malware...
Malicious code in @afg-ikea/ikea-family-registration-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1ac39afe31e807b61c9297e45f81042917f9e889e1ceb953fcaeba093c75576 The package @afg-ikea/ikea-family-registration-module was found to contain malicious code. Source: ghsa-malware...
MAL-2026-517 Malicious code in @afg-ikea/ikea-family-registration-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1ac39afe31e807b61c9297e45f81042917f9e889e1ceb953fcaeba093c75576 The package @afg-ikea/ikea-family-registration-module was found to contain malicious code. Source: ghsa-malware...
MAL-2026-518 Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f627f92f7e8b9ae99be35718e43eb73ed63a8818cea75a131f4bf85738cab2c3 The package @afg-ikea/ikea-kiosk-related-components was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview ostk-otel-autoconfig is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious Package
Overview overstock-health-express is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Embedded Malicious Code
Overview dydx-v4-client is a malicious package. Versions of this package were compromised with malicious scripts in core registry files. Remediation Avoid using all malicious instances of the dydx-v4-client package. Credit: Kush Pandya...
MAL-2026-509 Malicious code in @sommos/create-program-template-form-data (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa7bdf06061a821a92bec72c1ea8826213552ec4486d81e7776553a74293dd79 The package @sommos/create-program-template-form-data was found to contain malicious code. Source: ossf-package-analysis...
PT-2026-4772
IObit Uninstaller 10 Pro contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted service path in the IObit Uninstaller Service to insert malicious code that would execute with...
Malicious code in selenium-integration (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 50120169fb4cd982eb19b5dee69b1aa881d250d6bab46aaadb2746b92f0ec158 When importing the module, code downloads and executes a highly obfuscated remote script. --- Category: MALICIOUS - The campaign has clearly malicious intent,...
EUVD-2026-4643
Malicious code in selenium-integration PyPI...
MAL-2026-506 Malicious code in selenium-integration (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 50120169fb4cd982eb19b5dee69b1aa881d250d6bab46aaadb2746b92f0ec158 When importing the module, code downloads and executes a highly obfuscated remote script. --- Category: MALICIOUS - The campaign has clearly malicious intent,...