3 matches found
Malicious Package
Overview node-dvnr is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...
MAL-2022-4884 Malicious code in node-dvnr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 918dd35a86062c5b64900ab127836931bd1f5f418f05302cf4e0aea039ba17d6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in node-dvnr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 918dd35a86062c5b64900ab127836931bd1f5f418f05302cf4e0aea039ba17d6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...