Lucene search
K

7 matches found

Snyk
Snyk
added 2025/10/07 4:14 a.m.3 views

Malicious Package

Overview package-x is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS6.8AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2021-1332

Malware in sbrugna...

7.1CVSS5.6AI score0.01316EPSS
Exploits0References20
OSV
OSV
added 2025/09/23 6:30 p.m.2 views

MAL-2025-47593 Malicious code in package-x (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c97a3da4527d6f380ebdc150b7825a38cd9e5f84f7c854b9eabbef547c69c807 Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/23 6:30 p.m.3 views

Malicious code in package-x (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c97a3da4527d6f380ebdc150b7825a38cd9e5f84f7c854b9eabbef547c69c807 Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-dsr-package-x (npm)

The package @zalastax/nolb-dsr-package-x was found to contain malicious code...

7AI score
Exploits0
Prion
Prion
added 2021/10/20 1:15 p.m.15 views

Code injection

This affects all versions of package x-assign. The global proto object can be polluted using the proto object...

7.5CVSS9.4AI score0.015EPSS
Exploits1References2
CVE
CVE
added 2021/10/20 12:15 p.m.51 views

CVE-2021-23452

CVE-2021-23452 affects all versions of the package x-assign . The flaw is a prototype pollution vulnerability: an attacker can pollute the global proto object via the proto property, enabling manipulation of object prototypes and potentially leading to DoS or remote code execution as discussed in...

9.8CVSS9.3AI score0.015EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder