13263 matches found
MAL-2025-47802 Malicious code in testt-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 05bfc8616802c80804de7998c57d6b1f62deff849f9d3545b0775edfcd0de264 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
GHSA-XH9H-692F-MMG4 vulnerabilities
Vulnerabilities for packages: az, py3-knack...
GHSA-6FXP-P9MG-Q64W vulnerabilities
Vulnerabilities for packages: az, py3-knack...
Malicious code in fuckyoubitchbro (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fbbf1ade5d81c12afb87a44117b27f76d2e4bfa91b578fc50dfb44a8bb79cabe Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-191736 Malicious code in fuckyoubitchbro (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fbbf1ade5d81c12afb87a44117b27f76d2e4bfa91b578fc50dfb44a8bb79cabe Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
GHSA-6FXP-P9MG-Q64W vulnerabilities
Vulnerabilities for packages: py3-knack, az...
Linux Distros Unpatched Vulnerability : CVE-2021-21236
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CairoSVG is a Python pypi package. CairoSVG is an SVG converter based on Cairo. In CairoSVG before version 2.5.1, there is a regular expression denial of servic...
Malicious code in trongitpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e52bd087b815590884e004c2db67e0dd137ff0230282e4eb2b27afcb11ed36c3 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
MAL-2025-47806 Malicious code in trongitpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e52bd087b815590884e004c2db67e0dd137ff0230282e4eb2b27afcb11ed36c3 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
Malicious code in license-checker (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a636a791b9731fe5018309c2e7890934873ab4c091520d933029f170a1848592 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
MAL-2025-47784 Malicious code in license-checker (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a636a791b9731fe5018309c2e7890934873ab4c091520d933029f170a1848592 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
Malicious code in osanlizer (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b232b669046429e182e86e8e80a041907ff6d9b135b45e9de1ce17fc05dd4d42 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-47792 Malicious code in osanlizer (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b232b669046429e182e86e8e80a041907ff6d9b135b45e9de1ce17fc05dd4d42 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in kraken123 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 dc2f76a61af953726f4fc219f725013ce8b477860b47433b7fc0444994ffcfd5 As even described, the package contains a malicious code collecting large amount of data. The description suggests educational use, yet, the code can cause rea...
MAL-2025-191778 Malicious code in kraken123 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 dc2f76a61af953726f4fc219f725013ce8b477860b47433b7fc0444994ffcfd5 As even described, the package contains a malicious code collecting large amount of data. The description suggests educational use, yet, the code can cause rea...
Malicious code in mulaptested-pakname (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fe9ba6c7da3568c9fc879641c190c301a2bd8a349b38a44295eb2924139c78b4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-191796 Malicious code in mulaptested-pakname (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fe9ba6c7da3568c9fc879641c190c301a2bd8a349b38a44295eb2924139c78b4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in notary-client (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d6777fd3be7abdd8775b30e889a1bd66c4bef8af1794600867fc7292a8b9bcd0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in tronwebwpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c27676f6a6e649c59ad385440b50b50e0a2506b1d5795da736ce5ce10ecb5217 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
MAL-2025-47810 Malicious code in tronwebwpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c27676f6a6e649c59ad385440b50b50e0a2506b1d5795da736ce5ce10ecb5217 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...