Lucene search
+L

36 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/07/09 4:34 p.m.11 views

Malicious code in nonenull1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 162cd9e0496d35e0500fe084f6011a3e6893182b0fa209502c5d6017ab1138ac The package declares gypfile: true with no native C/C++ sources, and its binding.gyp abuses GYP command-expansion syntax in the sources list — !node...

6.1AI score
Exploits0References9
OSV
OSV
added 2026/06/26 3:42 p.m.11 views

MAL-2026-6527 Malicious code in @immobiliarelabs/backstage-plugin-gitlab-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 096fc86987f4a25a5fb6572968e0c7309d71ed3e6ab16c239427de98c7d30ae7 The package ships a binding.gyp at the package root whose contents use GYP command-expansion syntax !... inside its targets/sources fields. npm...

6.1AI score
Exploits0References5
OSV
OSV
added 2026/06/26 3:42 p.m.6 views

MAL-2026-6529 Malicious code in @immobiliarelabs/backstage-plugin-ldap-auth-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbe41ed7d4257171c43c1047d7fde036575b57305b26d18cec61d1f1a20d33b1 The package ships a binding.gyp at the package root containing GYP command-expansion syntax !... in its sources/targets configuration binding.gyp lin...

5.9AI score
Exploits0References5
OSV
OSV
added 2026/06/26 12:22 a.m.5 views

MAL-2026-6491 Malicious code in hexo-deployer-wrangler (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebc95a6a1ae1e522feabf03446f9791372191e27ca9da454717559b6cc6948eb The package ships a binding.gyp file line 6 containing GYP command-expansion syntax !... inside the targets/sources fields. npm implicitly runs...

6.4AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/24 11:4 p.m.16 views

Malicious code in leo-connector-mysql (npm)

The leo-connector-mysql npm package was compromised as part of the Miasma worm campaign targeting the LeoPlatform npm ecosystem. On June 24, 2026, 20 LeoPlatform packages were published within a 3-second window by a threat actor who had taken over the npm account czirker belonging to the...

5.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/24 11:4 p.m.18 views

Malicious code in leo-auth (npm)

The leo-auth npm package was compromised as part of the Miasma worm campaign targeting the LeoPlatform npm ecosystem. On June 24, 2026, 20 LeoPlatform packages were published within a 3-second window by a threat actor who had taken over the npm account czirker belonging to the LeoPlatform...

6.5AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/24 11:4 p.m.18 views

Malicious code in leo-config (npm)

The leo-config npm package was compromised as part of the Miasma worm campaign targeting the LeoPlatform npm ecosystem. On June 24, 2026, 20 LeoPlatform packages were published within a 3-second window by a threat actor who had taken over the npm account czirker belonging to the LeoPlatform...

6.5AI score
Exploits0References2
OSV
OSV
added 2026/06/24 11:4 p.m.18 views

MAL-2026-6431 Malicious code in leo-streams (npm)

The leo-streams npm package was compromised as part of the Miasma worm campaign targeting the LeoPlatform npm ecosystem. On June 24, 2026, 20 LeoPlatform packages were published within a 3-second window by a threat actor who had taken over the npm account czirker belonging to the LeoPlatform...

5.8AI score
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/03/05 12:52 a.m.6 views

org.webjars.npm:canvas (>=2.5.0 <=2.6.0), org.webjars.npm:color-thief (=2.2.5) +12 more potentially affected by CVE-2026-29786 via org.webjars.npm:tar (>=0.1.20 <=4.4.19)

org.webjars.npm:tar MAVEN version =0.1.20, =2.5.0, =0.97.5, =0.2.0, =3.4.0, =0.6.19, =2.0.0, =3.1.4, =3.4.1 - org.webjars.npm:tar.gz =1.0.7 Source cves: CVE-2026-29786 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-15416076...

8.6CVSS6.7AI score0.00408EPSS
Exploits2
CISA KEV Catalog
CISA KEV Catalog
added 2026/01/22 12:0 a.m.12 views

Prettier eslint-config-prettier Embedded Malicious Code Vulnerability

Prettier eslint-config-prettier contains an embedded malicious code vulnerability. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS6.4AI score0.04146EPSS
In wildExploits2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/21 6:24 a.m.5 views

Malicious code in synckit (npm)

This package installs a windows based malware file node-gyp.dll via install.js...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/21 6:24 a.m.5 views

Malicious code in eslint-config-prettier (npm)

This package installs a windows based malware file node-gyp.dll via install.js...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/21 6:24 a.m.5 views

Malicious code in napi-postinstall (npm)

This package installs a windows based malware file node-gyp.dll via install.js...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/21 6:24 a.m.4 views

Malicious code in eslint-plugin-prettier (npm)

This package installs a windows based malware file node-gyp.dll via install.js...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/07/19 6:30 p.m.8 views

GHSA-F29H-PXVX-F335 eslint-config-prettier, eslint-plugin-prettier, synckit, @pkgr/core, napi-postinstall have embedded malicious code

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS6.5AI score0.04146EPSS
Exploits2References19
NVD
NVD
added 2025/07/19 5:15 p.m.15 views

CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS0.04146EPSS
Exploits2References10
VulnCheck KEV
VulnCheck KEV
added 2025/07/19 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS5.9AI score0.04146EPSS
In wildExploits2References7
OSV
OSV
added 2025/07/19 12:0 a.m.4 views

CVE-2025-54313

eslint-config-prettier 8.10.1, 9.1.1, 10.1.6, and 10.1.7 has embedded malicious code for a supply chain compromise. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows...

7.5CVSS6AI score0.04146EPSS
Exploits2References12
Chainguard
Chainguard
added 2024/11/08 5:15 a.m.9 views

CVE-2024-21538 vulnerabilities

Vulnerabilities for packages: graalvm, tileserver-gl, kubeflow-katib, arangodb, opensearch-dashboards-fips, lerna, node-gyp, eslint, ts-patch, sqlpad, vitess, kibana, tileserver-gl-fips, py3-captum, airflow, pgadmin4, renovate, argo-workflows, opensearch-dashboards...

8.7CVSS6.2AI score0.00873EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/10/22 6:5 a.m.5 views

Malicious code in module-with-node-gyp (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ad0399f36bb5f87a753f7cfc481eebea229a86f704ea5e7fe4b1c82bb19bf0a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder