13263 matches found
MAL-2025-191920 Malicious code in venomenallib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4f33bd81b0b06fd056a05286d3664de55bbaff5fa8c1a54a07905e8e3b5e596a Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
Malicious code in zenomenallib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4c6be0b94e3c9643885ae8893cd9523bd5ad735965a16a3df64a347bd38f8016 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
MAL-2025-47814 Malicious code in zenomenallib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4c6be0b94e3c9643885ae8893cd9523bd5ad735965a16a3df64a347bd38f8016 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +43 more potentially affected by CVE-2025-58757 via monai (>=1.0.0 <=1.5.0)
monai PYPI version =1.0.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =1.0.12, =0.0.5, =0.0.6 - emphysemaseg =0.1.0 and more Source cves: CVE-2025-58757 Source advisory: SNYK:PYTHON-MONAI-12670797...
Malicious code in denomenallib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 72b314dc6f8d89e09c9bdd5deae5f16e934e6cddcea9958ef20b43d1b7129154 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
MAL-2025-191716 Malicious code in denomenallib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 72b314dc6f8d89e09c9bdd5deae5f16e934e6cddcea9958ef20b43d1b7129154 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
MAL-2025-191727 Malicious code in fenomenallib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 09b3bc239f1844ed4387ec558bcfd1f2d3cc8347bf8f47169044dc7c0933ecbd Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
Malicious code in kekovayalibka (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 62e5215c3a679298336a19cefc6971dc3ab4d26a68a1ee1b7fdafe97b7d2c8d0 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
MAL-2025-191817 Malicious code in private-evolution (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b0fcdd3ad61af1881ab9e5e8b9fb871a0e142868c0be585594fcd32b5f069f6c Package is just calling home and there is no other purpose --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anything th...
Malicious code in unicore (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d0c63e3dde8ac739b216a37381f04cd29e543075af8fb347b1685daf4a84e9d6 Package is just calling home and there is no other purpose --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anything th...
MAL-2025-191916 Malicious code in unicore (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d0c63e3dde8ac739b216a37381f04cd29e543075af8fb347b1685daf4a84e9d6 Package is just calling home and there is no other purpose --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anything th...
Malicious code in brotli-python (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3750f9d493198c7607b7f1d5855b6e8726edb24618beeb216e5a86a4a9119e5f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-47749 Malicious code in brotli-python (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3750f9d493198c7607b7f1d5855b6e8726edb24618beeb216e5a86a4a9119e5f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-191936 Malicious code in xenlib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e53ee4ee9935e6502ce16df23a8110b5cccba018b9c0c14279ebabc163e84265 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...
wikiteam3 (>=4.4.3 <=4.4.7) potentially affected by CVE-2025-58438 via internetarchive (=5.4.1)
internetarchive PYPI version =5.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on internetarchive and may be impacted: - wikiteam3 =4.4.3, =4.4.7 Source cves: CVE-2025-58438 Source advisory: SNYK:PYTHON-INTERNETARCHIVE-12549189...
MAL-2025-191739 Malicious code in giteegit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4a26c5d911f4394086eca9dfca0dfb8b05cc0675bac36dfdbec08e30f6d1abed Package exfiltrates source code files to a telegram channel, while the description promises saving them to a git service --- Category: MALICIOUS - The campaign...
OESA-2025-2174 python-pip security update
pip is the package installer for Python. You can use pip to install packages from the Python Package Index and other indexes. %global bashcompdir %b=$pkg-config --variable=completionsdir bash-completion 2/dev/null; echo $b:-/bashcompletion.d Name: python-pip Version: 23.3.1 Release: 3 Summary: A...
OESA-2025-2098 uv security update
An extremely fast Python package and project manager, written in Rust. Security Fixes: uv is a Python package and project manager written in Rust. In versions 0.8.5 and earlier, remote ZIP archives were handled in a streamwise fashion, and file entries were not reconciled against the archive's...
aa-altcorp (>=0.1.2b0 <=1.1.1), aa-alumni (>=0.0.1a1 <=1.0.1) +1435 more potentially affected by CVE-2025-57833 via django (>=5.2.0 <=5.2.5)
django PYPI version =5.2.0, =0.1.2b0, =0.0.1a1, =0.1.1, =3.1.0b1, =1.0.3, =0.0.1a2, =0.1.0, =0.2.0, =1.0.0, =1.1.0b3, =0.1.0b1, =0.1.0, =1.1.0 and more Source cves: CVE-2025-57833 Source advisory: OSV:PYSEC-2025-105...
Malicious code in python-dev-toolkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3e8bbf18a10505977ab19adc6dd13d15e1c7df3c69391e1c930289b953619549 Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...