Lucene search
K

6 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/22 1:29 a.m.9 views

Malicious code in aven_types (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0df68dd11fcc6eb930db59e54118c89a481c0d8db3d4db96ca7732ce04cc3bb2 The package aventypes was found to contain malicious code. Source: ghsa-malware d042da73509307cc87e2110ee9cbd8873cd35b4d5de30c65df0f8daf7e93f49a Any...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/16 12:0 a.m.8 views

Malicious code in transform-typescript (npm)

The package 'transform-typescript' is part of the PhantomRaven supply chain attack campaign Wave 3. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...

5.5AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/01/19 1:0 a.m.7 views

Malicious code in internallib_v355 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dba9a4166fd959eea5357952f1ffba736b4e6c9176ddeff85e0aeb1592edef8 The package internallibv355 was found to contain malicious code. Source: ghsa-malware 41e49779a105339cef2addb161d2a79d3aa2e22201f862ba6c3ef2af1ab1ccd...

5.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/04/22 6:10 a.m.8 views

Malicious code in arkime (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e6853d07fc7ca8efb0ffc45302b6b677a4b83c2e2de0e773616d9009f9b0ad8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:14 p.m.7 views

Malicious code in wg5 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ad3d5b6f4d4166695b8f2fae57f74d9575339980a73c4c600b2ecdd9186c5124 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/05/17 6:35 a.m.6 views

Malicious code in testapp00009 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9fb396ef5f846069b4adb5738c3c1f69ea523ac3b4b516f1437304f6cdd35f69 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder