3 matches found
MAL-2025-190080 Malicious code in update-proxima-xenobiology-sqlite (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a389c341f2920c0cd511d5980bc1b6da96ec9cd4958b7970e42dd5802fffa3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2022-3359
Malicious code in bioql PyPI...
GSD-2022-1002521 backdoor in ctx version 0.1.2-1, 0.1.2-2, 0.1.4, 0.2, 0.2.1, 0.2.2, 0.2.2.1, 0.2.3, 0.2.4, 0.2.5, 0.2.6
In PyPI ctx version 0.1.2-1, 0.1.2-2, 0.1.4, 0.2, 0.2.1, 0.2.2, 0.2.2.1, 0.2.3, 0.2.4, 0.2.5, 0.2.6 a backdoor exists in the ctx package that can be attacked via a malicious package update resulting in credential theft from environment variables...