3 matches found
MAL-2025-47199 Malicious code in ngx-toastr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1774663df406fad902dc8413cbf9ac9df437d53215cfb394dd10122b768ebc9e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ngx-toastr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1774663df406fad902dc8413cbf9ac9df437d53215cfb394dd10122b768ebc9e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...