3 matches found
Malicious code in ove-auto-annotate (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73d921bb6f1f70021ae12802fbc01223f7ad55bdf036a5b565142f3d82af4aa3 Any computer that has this package installed or running should be considered fully compromised. All...
MAL-2025-47338 Malicious code in ove-auto-annotate (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73d921bb6f1f70021ae12802fbc01223f7ad55bdf036a5b565142f3d82af4aa3 Any computer that has this package installed or running should be considered fully compromised. All...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...