MAL-2025-6454 Malicious code in atlasctf-21-prod-17 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0ae7f72936fae89a02869e537528e165a62538cbfdd9d4a441cdcdbd316783da On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6453 Malicious code in atlasctf-21-prod-16 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 57c6acfcb3c6bb659cac9b311e2cc25e72f3ab57d80e3403b70b7e05a2a06ed9 On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6443 Malicious code in atlasctf-21-prod-06 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 40700739340f4f0bb3e0439a94754cb868827b002cad84a1dfca90da1dfa032d On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6448 Malicious code in atlasctf-21-prod-11 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ece7411f662f1c3b05a8f6bbda7c94099f1e20acc383cefb69bc8195da83e86a On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6437 Malicious code in atlasctf-21-prod-00 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 14e4ae78e884590292b3a8ef6ebe2093e02ffc05d89f37718d9f2573e8a9e5e0 On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6440 Malicious code in atlasctf-21-prod-03 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 374fe69b5719748c5255c0665469e0e45e3064884ece003a7fbfc56c04d3a93b On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6439 Malicious code in atlasctf-21-prod-02 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 797236959adb77b5a2b6d687ba0dcd688ea1fff675136998f38fedc01c65fa89 On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6449 Malicious code in atlasctf-21-prod-12 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 40759a1334b288bf1b2454e5df32ae973986c6e210d3261bde56c16dfc2fab22 On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6442 Malicious code in atlasctf-21-prod-05 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7e008f819b27019b178836f9edea97e159c3c1f765d391800ea99f06a26ce20a On installation or importing, the package attempts to exfiltrate some basic information, e.g. /etc/passwd --- Category: PROBABLYPENTEST - Packages looking like...

MAL-2025-6570 Malicious code in pyobfuscation (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f8e00692944f5cafaa4c7fdb9974554f20629bd4581e2c68baa5f1b0ca675def During installation, an executable is downloaded and started. It's been identified to contain Brute Ratel C4 components --- Category: MALICIOUS - The campaign...

Malware Hidden in AI Models on PyPI Targets Alibaba AI Labs Users

ReversingLabs discovers new malware hidden inside AI/ML models on PyPI, targeting Alibaba AI Labs users. Learn how attackers…...

Malicious code in caixaequ2ahzoop (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 da1d699d5d12de135ae0da4180622e30084a77fd76ee5cd36fe5667ce14c4bbe Obfuscated code gets a command from the remote target and executes it. At the time of the test, it was just "whoami". Thus, it's rather just an experiment ---...

MAL-2025-4526 Malicious code in caixaequ2ahzoop (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 da1d699d5d12de135ae0da4180622e30084a77fd76ee5cd36fe5667ce14c4bbe Obfuscated code gets a command from the remote target and executes it. At the time of the test, it was just "whoami". Thus, it's rather just an experiment ---...

MAL-2025-5113 Malicious code in fernetpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ccbbcfd921dcefb2809ba41756181682f7a04f1a9f701adcf0c37c9889d87a98 If imported, the module starts a multi-stage infostealer, exfiltrating browser data as well as crypto wallets, and also attempts to monitor clipboard looking f...

MAL-2025-5123 Malicious code in pyfernet (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5a2f90c0e3c6e46456cd3e319aaaf4a7b53475a554a997a964fdda898e85fcd0 If imported, the module starts a multi-stage infostealer, exfiltrating browser data as well as crypto wallets, and also attempts to monitor clipboard looking f...

CVE-2024-29151

Rocket.Chat.Audit through 5ad78e8 depends on filecachetools, which does not exist in PyPI...

CVE-2023-31543

A dependency confusion in pipreqs v0.3.0 to v0.4.11 allows attackers to execute arbitrary code via uploading a crafted PyPI package to the chosen repository server...

CVE-2022-34500

The bin-collect package in PyPI before v0.1 included a code execution backdoor inserted by a third party...

CVE-2022-40805

The d8s-urls for python 0.1.0, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-hypothesis package...

CVE-2022-40432

The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...