97 matches found
MAL-2025-39543 Malicious code in wzltools (npm)
The package wzltools was found to contain malicious code...
MAL-2025-24275 Malicious code in kamonetuce (npm)
The package kamonetuce was found to contain malicious code...
MAL-2025-27668 Malicious code in node.js (npm)
The package node.js was found to contain malicious code...
MAL-2025-6662 Malicious code in test-confusion (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6656 Malicious code in simple-auth-manager-ui (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6636 Malicious code in my-confused-package (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6634 Malicious code in modal-arbitary (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6425 Malicious code in jsonwedjoken (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6418 Malicious code in fooldependaairbf (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6411 Malicious code in dndattachmentt (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6398 Malicious code in adobe-cr (npm)
--- -= Per source details. Do not edit below this line.=-...
OPENSUSE-SU-2025:15382-1 ruby3.4-rubygem-thor-1.4.0-1.1 on GA media
These are all security issues fixed in the ruby3.4-rubygem-thor-1.4.0-1.1 package on the GA media of openSUSE Tumbleweed...
MAL-2025-5076 Malicious code in content20200508 (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6458 Malicious code in atlasctf-21-prod-21 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 79c8505b253779798971bd98108a76e3e9ba4a7a590fa35b73eef9782c70616d On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...
MAL-2025-4185 Malicious code in matter_build_action (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-4162 Malicious code in atg-breakpoints (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-3994 Malicious code in grunt-autogen-bemdecl (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1cfa135e81fd4cc5ac6752ef4b886ab74fab9af400847c42cc4a489ac9f41875 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4254 Malicious code in veriftest1asdlaaaa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 18d30d48c72a61cda2e8b0ecd3a27b958e8964b4c65833cb780186382285101d During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
CVE-2025-27789 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards-fips, jitsucom-jitsu, ts-patch, kibana, vitess, argo-workflows, prism, opensearch-dashboards...
CVE-2025-27516 vulnerabilities
Vulnerabilities for packages: py3.10-vllm-cuda-11.8, py3.9-torchvision-cuda-11.8, py3.9-torchvision-cuda-12.3, py3.11-torchvision-cuda-11.8, nemo, jupyter-base-notebook, grafana-oncall, tensorflow-cpu-jupyter, text-generation-inference, py3.10-torchvision-cuda-12.3, reflex,...