257 matches found
Malicious code in collabs-influencer-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 313990126cb820aa31d04033f63105e8a07118c14e0ec49cd4ce0c67c1f60c47 The OpenSSF Package Analysis project identified 'collabs-influencer-ui' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
MAL-2025-41822 Malicious code in cyclic-dep-explicit-1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4e587976f564b0bbbf5eaaed83fdbe6b64e1c989d0e1c90e13dc5e0b579193a1 The OpenSSF Package Analysis project identified 'cyclic-dep-explicit-1' @ 1.1.0 npm as malicious. It is considered malicious because: - The...
Malicious code in @callcenter-frontend/services (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f985946c9433e8dec885ea60292e121e23ac3d9bbfe2f1cae80882b85ce1c29e The OpenSSF Package Analysis project identified...
Malicious code in @nx/js (npm)
--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 3c2a892d723eab92005e851787f5a482f8d1a64259e6dda10ee1d097c0123a84 The nx project and associated plugins were compromised via a vulnerable GitHub workflow that allowed code injection and the theft of an NP...
Malicious code in prettier-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis dd4a56ce83136ba0c08709c38d11bee44b0351d7dd9c5bca68b457fcb1b44be9 The OpenSSF Package Analysis project identified 'prettier-v2' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41284 Malicious code in eslint-8 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fc62673366ae7ad1109086b5169030e17b4ed81be6735878522392329ebca48c The OpenSSF Package Analysis project identified 'eslint-8' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-41286 Malicious code in eslint-9 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7b6f571e9facdadc164a1e0a5ed2a298a233bbc3138ef7df78bae9d0a3d588a4 The OpenSSF Package Analysis project identified 'eslint-9' @ 99.0.9 npm as malicious. It is considered malicious because: - The package...
CVE-2025-54813
creationtimestamp| type| source ---|---|--- 2025-08-22 16:25:24+00:00| seen| https://seclists.org/oss-sec/2025/q3/135 2025-08-22 18:53:58+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lwz4xb5t5523 2025-08-22 19:01:44+00:00| seen|...
CVE-2024-48988
creationtimestamp| type| source ---|---|--- 2025-08-22 15:13:14+00:00| seen| https://seclists.org/oss-sec/2025/q3/133 2025-08-22 17:23:54+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lwyxw5gsjc22 2025-08-22 18:38:45+00:00| seen|...
CVE-2025-53192
creationtimestamp| type| source ---|---|--- 2025-08-18 18:16:20+00:00| seen| https://seclists.org/oss-sec/2025/q3/121 2025-08-19 00:08:12+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lwpmni5hwr2u 2025-08-19 00:12:44+00:00| seen|...
MAL-2025-6897 Malicious code in swiv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 945d4a5f54e77ae66588b5b64aa30eb2627903bffcb72a3031b9c4b6b2122b43 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-6892 Malicious code in appcenterclient (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1bc657665525c8990a4f9ac5c4f30181a8593678337e7f78667dfdba06d44922 The OpenSSF Package Analysis project identified 'appcenterclient' @ 7.7.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-6883 Malicious code in @capacitor-bmo/biometric (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 31e5db1d24cb68dbd291a2dc917c13515b048d4ae58196d9a921d4fea7382316 The OpenSSF Package Analysis project identified '@capacitor-bmo/biometric' @ 9999.0.1 npm as malicious. It is considered malicious because: - Th...
MAL-2025-6885 Malicious code in solana-pump-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4f33aa024a9c864923429d861e28123d1aaba539b1e235683189ca285697b572 The OpenSSF Package Analysis project identified 'solana-pump-test' @ 2.5.3 npm as malicious. It is considered malicious because: - The package...
MAL-2025-6879 Malicious code in @yaqiguo/dnstest (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d10a6c69fefe74572e208680a6e74fa93be7f549ac4f033a0dbbfc6ddb656b43 The OpenSSF Package Analysis project identified '@yaqiguo/dnstest' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
CVE-2025-54409
creationtimestamp| type| source ---|---|--- 2025-08-14 17:01:42+00:00| seen| https://seclists.org/oss-sec/2025/q3/110 2025-08-14 19:51:18+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lwf4gge6go2r 2025-08-15 18:18:15+00:00| seen|...
CVE-2025-54389
creationtimestamp| type| source ---|---|--- 2025-08-14 16:58:31+00:00| seen| https://seclists.org/oss-sec/2025/q3/109 2025-08-14 19:26:18+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lwf2zpgb5d2r 2025-08-15 18:18:15+00:00| seen|...
CVE-2025-55675
creationtimestamp| type| source ---|---|--- 2025-08-14 11:23:00+00:00| seen| https://seclists.org/oss-sec/2025/q3/108 2025-08-14 13:55:47+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lweikou36f2r...
CVE-2025-55674
creationtimestamp| type| source ---|---|--- 2025-08-14 11:09:23+00:00| seen| https://seclists.org/oss-sec/2025/q3/107 2025-08-14 13:30:43+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lweh5v4hus2o 2025-08-14 15:02:16+00:00| seen|...
CVE-2025-55673
creationtimestamp| type| source ---|---|--- 2025-08-14 10:41:44+00:00| seen| https://seclists.org/oss-sec/2025/q3/105 2025-08-14 13:10:39+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lwefzyvra22p...