Lucene search
+L

218 matches found

attackerkb
attackerkb
added 2021/06/07 8:37 p.m.2 views

CVE-2021-23391

This affects all versions of package calipso. It is possible for a malicious module to overwrite files on an arbitrary file system through the module install functionality...

7.3CVSS5.5AI score0.00433EPSS
Exploits1References3
osv
osv
added 2021/04/14 8:4 p.m.29 views

GO-2021-0068 Arbitrary code injection via the go command with cgo on Windows in cmd/go

The go command may execute arbitrary code at build time when using cgo on Windows. This can be triggered by running go get on a malicious module, or any other time the code is built...

7.5CVSS8AI score0.06497EPSS
Exploits0References6
mscve
mscve
added 2020/09/25 12:0 a.m.5 views

`mariadb` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.

...

7.5CVSS7AI score0.01135EPSS
Exploits0
veracode
veracode
added 2019/05/31 1:10 a.m.6 views

Malicious Module

bowee has a malicious module in the form of a preinstall script. The script gets a backdoor file from a remote server and executes it, subsequently giving full control of the computer to an external malicious entity...

6.8AI score
Exploits0
veracode
veracode
added 2019/05/17 6:52 a.m.11 views

Malicious Module

donotinstallthis was a malicious module. A malicious script was executed as a part of installation, allowing it to hijack environment variables to track and send information on how many installations were done...

6.4AI score
Exploits0
osv
osv
added 2018/06/07 2:29 a.m.2 views

CVE-2017-16207

discordi.js is a malicious module based on the discord.js library that exfiltrates login tokens to pastebin...

7.3CVSS5.8AI score0.00749EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.24 views

CVE-2017-16207

discordi.js is a malicious module based on the discord.js library that exfiltrates login tokens to pastebin...

7.3CVSS7.1AI score0.00749EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.13 views

CVE-2017-16081

cross-env.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01286EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.15 views

CVE-2017-16075

http-proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01177EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.16 views

CVE-2017-16074

crossenv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01177EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.18 views

CVE-2017-16078

shadowsock was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01123EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.15 views

CVE-2017-16076

proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01123EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.12 views

CVE-2017-16077

mongose was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01239EPSS
Exploits1References1
nvd
nvd
added 2018/06/07 2:29 a.m.15 views

CVE-2017-16080

nodesass was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01123EPSS
Exploits0References1
prion
prion
added 2018/06/07 2:29 a.m.12 views

Code injection

proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

5CVSS7.4AI score0.01123EPSS
Exploits0References1
prion
prion
added 2018/06/07 2:29 a.m.14 views

Code injection

gruntcli was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

5CVSS7.4AI score0.01123EPSS
Exploits0References1
prion
prion
added 2018/06/07 2:29 a.m.11 views

Code injection

mssql.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

5CVSS7.4AI score0.01123EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.15 views

CVE-2017-16067

node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01123EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.14 views

CVE-2017-16064

node-openssl was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01177EPSS
Exploits0References1
nvd
nvd
added 2018/06/07 2:29 a.m.17 views

CVE-2017-16060

babelcli was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...

7.5CVSS7.5AI score0.01177EPSS
Exploits0References1
Rows per page
Query Builder