Lucene search
K

13263 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/03 7:28 p.m.6 views

Malicious code in python-dev-toolkit (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3e8bbf18a10505977ab19adc6dd13d15e1c7df3c69391e1c930289b953619549 Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.6AI score
Exploits0References1
OSV
OSV
added 2025/09/03 4:45 p.m.4 views

MAL-2025-47755 Malicious code in data-processing-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f5c7542831f6f9fe72a65e436b1f85c10261aac12ceae6f1bcc490afad6d1aaa Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/03 4:45 p.m.7 views

Malicious code in data-processing-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f5c7542831f6f9fe72a65e436b1f85c10261aac12ceae6f1bcc490afad6d1aaa Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/03 3:52 p.m.6 views

Malicious code in awesome-tools-collection (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1b8c27c2c5512bcb412c63a9e5ab3a392cb21f8ff51f281d8e7ac73a08929abb Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.6AI score
Exploits0References1
OSV
OSV
added 2025/09/03 3:52 p.m.4 views

MAL-2025-47746 Malicious code in awesome-tools-collection (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1b8c27c2c5512bcb412c63a9e5ab3a392cb21f8ff51f281d8e7ac73a08929abb Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/03 3:52 p.m.5 views

Malicious code in learning-pypi-demo-nisimi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0b3a0d62b36ae3a2e643a327b7cf5b88366d4a8a89381eca570f34c453f1eaf4 Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.6AI score
Exploits0References1
OSV
OSV
added 2025/09/03 3:52 p.m.3 views

MAL-2025-47782 Malicious code in learning-pypi-demo-nisimi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0b3a0d62b36ae3a2e643a327b7cf5b88366d4a8a89381eca570f34c453f1eaf4 Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/03 3:13 p.m.5 views

Malicious code in nayzakishere (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 448aef468d12fea1df0793a00d8a0e55788dcebd3033ed1ec515012020538b6b Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

7.1AI score
Exploits0References4
OSV
OSV
added 2025/09/03 3:13 p.m.4 views

MAL-2025-191800 Malicious code in nayzakishere (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 448aef468d12fea1df0793a00d8a0e55788dcebd3033ed1ec515012020538b6b Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

7AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/03 3:12 p.m.5 views

Malicious code in fromwherebitch (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 afc6e5261aea72f5412acfb599af497963496a824bdd8a9b943b2873cbd4c743 Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

7.1AI score
Exploits0References4
OSV
OSV
added 2025/09/03 3:12 p.m.3 views

MAL-2025-191735 Malicious code in fromwherebitch (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 afc6e5261aea72f5412acfb599af497963496a824bdd8a9b943b2873cbd4c743 Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

7AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/03 3:0 p.m.5 views

Malicious code in xwormclient (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4a6c0b4ce2747e70d2e9f46f624188d4da6a70af3182e6e94b22de7446dc180c Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

7.1AI score
Exploits0References4
OSV
OSV
added 2025/09/03 12:0 a.m.1 views

OPENSUSE-SU-2025:15519-1 python311-ruff-0.12.11-2.1 on GA media

These are all security issues fixed in the python311-ruff-0.12.11-2.1 package on the GA media of openSUSE Tumbleweed...

2.3CVSS6.1AI score0.00303EPSS
Exploits0References1
OSV
OSV
added 2025/09/02 1:48 p.m.3 views

MAL-2025-47805 Malicious code in trongithpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fd746459b157adb9ec54b646179a859c1719a7ae94e63bbd6180c683a804e49b Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

6.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/02 1:48 p.m.4 views

Malicious code in trongithpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fd746459b157adb9ec54b646179a859c1719a7ae94e63bbd6180c683a804e49b Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

6.9AI score
Exploits0References2
OSV
OSV
added 2025/09/02 9:19 a.m.4 views

MAL-2025-47759 Malicious code in doxer (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5e6e78428567e3ac4f2fdc27911858b6758446b4fe60c754488f881a203e32a9 During installation a screenshot is exfiltrated, and the package has no other purpose --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/02 9:19 a.m.4 views

Malicious code in doxer (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5e6e78428567e3ac4f2fdc27911858b6758446b4fe60c754488f881a203e32a9 During installation a screenshot is exfiltrated, and the package has no other purpose --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

7AI score
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2025/09/02 12:0 a.m.3 views

python311-eventlet-0.40.3-1.1 on GA media (moderate)

python311-eventlet-0.40.3-1.1 on GA media Announcement ID: openSUSE-SU-2025:15507-1 Rating: moderate Cross-References: CVE-2025-58068 CVSS scores: CVE-2025-58068 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2025-58068 SUSE : 6.3...

6.5CVSS7.3AI score0.00363EPSS
Exploits0
OSV
OSV
added 2025/08/30 5:47 p.m.5 views

MAL-2025-191896 Malicious code in testt-abc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 96ed384307759dfae8ac9925fd7299430dbd8e7ff3bc2cb3123c2e9a141c0666 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/30 5:44 p.m.3 views

Malicious code in testt-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 05bfc8616802c80804de7998c57d6b1f62deff849f9d3545b0775edfcd0de264 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
Rows per page
Query Builder