1151 matches found
Malicious code in ipsecurity (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx a051635703d3a602e1b05da35aa26561b2f211a4625fe23054dd6d8f6b44757b Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
2broke2wait (=0.1.0), 2ch-fetcher-with-proxy (>=1.0.0 <=1.0.1) +4078 more potentially affected by CVE-2023-32314 via vm2 (>=1.0.1 <=3.9.17)
vm2 NPM version =1.0.1, =1.0.0, =15.0.0, =5.1.3, =1.0.2, =1.0.1, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.2.48, =0.12.5-20190619040852, =0.24.1-20230627140514 and more Source cves: CVE-2023-32314 Source advisory: OSV:GHSA-WHPJ-8F3W-67P5...
@axosoft/azure-devops-node-api (=6.6.3), @capgeminiuk/generator-powerapps-project (>=0.1.55 <=0.6.6) +92 more potentially affected by CVE-2023-30846 via typed-rest-client (>=0.10.0 <=1.7.3)
typed-rest-client NPM version =0.10.0, =0.1.55, =1.0.8-1, =2.0.0, =2.0.1-1, =1.1.0, =1.79.5, =0.0.1, =1.0.0, =6.0.0 - @kcutils/color =0.2.0-rc.3 and more Source cves: CVE-2023-30846 Source advisory: OSV:GHSA-558P-M34M-VPMQ...
2broke2wait (=0.1.0), 2ch-fetcher-with-proxy (>=1.0.0 <=1.0.1) +4063 more potentially affected by CVE-2023-30547 via vm2 (>=1.0.1 <=3.9.16)
vm2 NPM version =1.0.1, =1.0.0, =15.0.0, =5.1.3, =1.0.2, =1.0.1, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.2.48, =0.12.5-20190619040852, =0.24.1-20230627140514 and more Source cves: CVE-2023-30547 Source advisory: OSV:GHSA-CH3R-J5X3-6Q2M...
0.extends.wechat (>=1.0.51 <=1.0.65), 00ld8nuivn (=2.1.0) +30668 more potentially affected by CVE-2023-0842 via xml2js (>=0.1.10 <=0.4.9)
xml2js NPM version =0.1.10, =1.0.51, =1.0.65 - 00ld8nuivn =2.1.0 - 00rqiw31nd =2.1.0 - 01dk01majk =2.1.0 - 02rjq8i863 =1.1.0 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 066m7q8o0z =2.1.0 - 06buj9h3su =2.1.0 - 06dre15t8r =2.1.0 - 07fgapmu9l =1.1.0 - 07t2xvu6t4 =2.1.0 - 0850u4lkpu =1.1.0 - 098of6vzvl...
Malicious code in esqccpongcpu (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx c15d17f192fef96f3398bc91fe19bdcbcca1aa284532b9c0db068eefc1160732 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in libguigrandmc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 6aecdbe6b089ffe59ba97add73503b78ab4c6dc432a5b733ed03687c146effbf EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in tphydratoolsplit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0b83ac2b575decdf8cd7ea3be0d7a2c8073ceb3b113d3a756fcb0b189605a718 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqstudyrepull (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 009e3afe0678f4ddccc2f22c8f54172f2d18e1223738609678eb4743ef44ca1d EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqpywlgtbnvidia (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 191b968fc6ef6972cdbabd8267338948b672db4a977286eafb77fa1563b13a3f EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in selfcvinfoad (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 934ef50eb7830e1355e375cbb3e865e916602091e5eb92946e6980facdcaa45f EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in tpintelpullcpu (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx aa5aa0d7db3d4fbdeb8813876a47fb05270e4b0d1e3b83b994a2caf8be6b0aa2 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqproofpongint (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx d4705c856105aac2f1df126988951f8680127cf4798413af80d75dd19c04ae81 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in selfcontroledintel (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ea9d18c4e891130d149a99fdde160834d53f3c33789d2e771d40245b33c943b7 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in libcontrolhttpstr (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ec54d33b4978cf8aeb5ed3e67dbc5b622f0765d0812587bb826940a7ea1aa67f EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in tppylgtbnvidia (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 902f6b3dd565bb41847f637f72fe2dd7c288d9b3e814758143c6147aab78b456 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in selfstrresuper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 49803565eb7930c1be012ba3459247ea4b14d432a6e16c4ba5917e4e2f697856 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in libkilledgame (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 7309d7a56fe3f4d048da7ed2d69ea79e96435d3da3cd52434e2326c8ec184c1d EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqrecpuvm (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3fd8ff01ed151a6652482ca6227822f570b4438576b3e170d62c79de7ffd4999 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in py-proofsplitpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 6248a81834bf45352b3f459d40735391f713db7e100029459333cc0b6be7c4b7 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...