149 matches found
Embedded Malicious Code
Overview @cap-js/db-service is a CDS base database service Affected versions of this package are vulnerable to Embedded Malicious Code that conceals an obfuscated payload designed to steal developer credentials during the package installation. The malicious versions and their contents are activel...
Embedded Malicious Code
Overview mbt is a that triggers an 11.6 MB heavily obfuscated script execution.js during package installation. Once executed on a developer's machine, the malware steals the developer's credentials and weaponizes them to automatically create public GitHub repositories under the victim's account...
Embedded Malicious Code
Overview @cap-js/sqlite is a CDS database service for SQLite Affected versions of this package are vulnerable to Embedded Malicious Code that conceals an obfuscated payload designed to steal developer credentials during the package installation. The malicious versions and their contents are...
Malicious code in @supera/share (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c348a3e52ca7aa30cd6b9bd7234d6385f1305e8c0f04c400ff236df303f06628 Any computer that has this package install...
Malicious code in @supera/asjnakwndlja (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fe6ab5a3ff2b2c90cfb7b31837f77cab7b08963f47908e8f5f34e9280b20fe2e Any computer that has this package install...
Malicious code in supera (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
Malicious code in @supera/aaaaaaaaaaa (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d347fb8b1e6f331c8dc5ba623c0b5f80932085711d95fd7e3f209c5180b5f79e Any computer that has this package install...
Malicious code in @isimplelab/ng2-charts (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in sample-notes-application (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
Malicious code in tstfde54545 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
Malicious code in 1password-sdk-examples (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
MAL-2025-1545 Malicious code in testing098765 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
MAL-2025-1541 Malicious code in charts-e2e (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
MAL-2025-1543 Malicious code in fgrttry565be (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain...
Malicious code in archon1 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c7bb776dd2e73bc0826f47abfa61c8a0116dc3a78fd66b3924379c9971278e3b Any computer that has this package install...
MAL-2025-1531 Malicious code in cse-common-arch--long-running-app--create-vm-cf (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0082d72cd8ecadc18bff535a47c4269d9f8ed6d91c6c4a68c6285abf1fe38320 Any computer that has this package install...
Malicious code in metamask-sdk-create-react-app (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed98a81fafea025740493667412dfaf8dd28cd12988fabdf1118a1765a12733d Any computer that has this package install...
Malicious code in uzx-internal (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c7250eab0a6f8a7fb2b339d8b38fdfeacce4a669afd92b62c4f271d460973faf Any computer that has this package install...
Malicious code in biconomy-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7692c3d9c9dbc78359b722789ba568b39a3e9b29761ba732738a992fc85c77fe Any computer that has this package install...
Malicious code in uzx-dev (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 480bcafaaaad658c3b61f5335846df6701c8e8eda0856c45fcd0c1c55babfa1d Any computer that has this package install...