Lucene search
K

149 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:58 p.m.6 views

Malicious code in tokocrypto-dev (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 33ba3b3f29ac7a1725f71e0b16ff23e83c034f61280c327bf92fc31ed4ee2d3a Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:55 p.m.5 views

Malicious code in bithumb-test (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec8160062eddc686429c4bc7c90f6b2e5a3e7ad00942481d64cb749ece398338 Any computer that has this package install...

7AI score
Exploits0References1
OSV
OSV
added 2025/02/11 9:55 p.m.6 views

MAL-2025-1282 Malicious code in xt-dev (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 888d6cec6842a849e2ec069a734943936ab4dcd497fb6dd9e81760860817728e Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:33 p.m.4 views

Malicious code in probit (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 80843cc7fd3493d49886adec595255cb925252131a59d986c90c8eecf864e89b Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:33 p.m.5 views

Malicious code in probit-test (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8db186f44c4cce05bf17f2684794f1def34c2db3c28e7b4eb69347459ddb4c76 Any computer that has this package install...

7AI score
Exploits0References1
OSV
OSV
added 2025/02/11 9:33 p.m.5 views

MAL-2025-1278 Malicious code in probit-internal (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7fda95aa29510bdadd84f77f4192894a8b7ba7729b1fa65823a21672fc9e7674 Any computer that has this package install...

7AI score
Exploits0References1
OSV
OSV
added 2025/02/11 9:33 p.m.6 views

MAL-2025-1277 Malicious code in probit-dev (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b53f56d9feb1821fb971f6e193dc7ea5df777a9e0136fa3068e4775f197e0e23 Any computer that has this package install...

7AI score
Exploits0References1
OSV
OSV
added 2025/02/11 9:33 p.m.3 views

MAL-2025-1279 Malicious code in probit-main (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b90c84ef211f2f9ce83ee001f131dc0beaf0a6c6bf8667374fb9f14e54ae6fe3 Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:27 p.m.4 views

Malicious code in toobit-test (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c55608bc5157f14f615aea6e2e8fd8a5004e3a307d5a12e69f5f6d311d2a74c9 Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:27 p.m.6 views

Malicious code in toobit-dev (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d0f3cbca32c205dc8a61718610eba04f690441add92e4fb0e98f1e3f18f21f9 Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:27 p.m.5 views

Malicious code in toobit-internal (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4dc2372cd3e422972f9e5ad734631f8915a68a2543a638d01de026ebb0d04436 Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/11 9:27 p.m.4 views

Malicious code in toobit-main (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bbef733acdf5215bfdef9bb31af40ec7e1bd2fb0cab3167cf10876e9020e971e Any computer that has this package install...

7AI score
Exploits0References1
OSV
OSV
added 2025/02/01 9:0 p.m.3 views

MAL-2025-723 Malicious code in sigma-payment (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5cae3e39d6adad5c19ce159910927557c2e98660ac824828e0eb22a0dce296ae Any computer that has this package install...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/01 8:52 p.m.4 views

Malicious code in hotmart (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 630908e08c08fe1b728bca7f4dc2b3bad96652d9083d958a6208bd3ea59f1a37 Any computer that has this package install...

7AI score
Exploits0References1
OSV
OSV
added 2025/02/01 8:49 p.m.2 views

MAL-2025-721 Malicious code in actiris (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ce42694aa8de599a7fc31c85d8c8bd89e7fd57194eb3b657b584a863fdf3402d Any computer that has this package install...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/31 3:1 a.m.5 views

Malicious code in react-native-country-picker-modal-modified (npm)

The package executes harmful command in pre-installation script to send sensitive data to an arbitrary domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 69921c906d4d0ecfa3ba0de532e27f29b18c6be04a563ba99aa0590b1fcc77a8 Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/29 12:18 p.m.7 views

Malicious code in org.cocoapods.csv (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a3d922335d96d21629591f3c06d391cc64ca4117561dcb9711fb65451dd841e Any computer that has this package install...

7AI score
Exploits0References3
OSV
OSV
added 2025/01/29 12:18 p.m.6 views

MAL-2025-621 Malicious code in org.cocoapods.csv (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a3d922335d96d21629591f3c06d391cc64ca4117561dcb9711fb65451dd841e Any computer that has this package install...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/15 3:58 a.m.4 views

Malicious code in venmo-ui (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c56cfa4b6e6b329cc9502a5eeea242d13fd03e156392465657d5254b441ecfe Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/13 11:17 p.m.3 views

Malicious code in parseq-tracevis (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7f1942e5a38dc2f1ef479bf37cdc9f9737c8ffc2798503291d72615802a3a699 Any computer that has this package install...

7AI score
Exploits0References1
Rows per page
Query Builder