Lucene search
K

284 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/13 3:25 p.m.4 views

Malicious code in @bookiply/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd6b31f3177ed87f264b6338a9fe54bb910142b5622bba68372acbac801268d2 The package @bookiply/core was found to contain malicious code. Source: ghsa-malware 2887f360cb9e14cb6c6065ddc86c7aa69674edb8d09486f31b3256f376894e8f...

5.7AI score
Exploits0References1
Snyk
Snyk
added 2026/03/20 4:54 a.m.5 views

Malicious Package

Overview xyztttxyz is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/16 1:20 a.m.6 views

Malicious code in react-jsonschema-rxnt-extras (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8e29ae9593362f6ccecd21ee9abaabfe0baf7da78be18ebeeef87277d03b1f56 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/15 10:44 p.m.4 views

Malicious code in @nativescript-community/ui-image (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e0f3449039a2352fc57480496becd92f22e7c723fa82f23ea58051945133a68 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/07/15 1:32 a.m.2 views

Malicious code in querypilot (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2c3898e80b9dd4a417ddf444390b2d4adef6f4ac18a5f2e63f2d25defde9db27 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/05/12 6:40 a.m.3 views

MAL-2025-3752 Malicious code in @myop/sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb5f8501100b711c468850e2985fc83d8369da105d072a9ce2543a0f189b7326 Withdrawn Advisory This advisory has been withdrawn because the @myop/sdk npm package is not malware. This link is maintained to preserve external...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/04/17 4:39 a.m.4 views

Malicious code in airbnb-embed-frame (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 376bf68663b9b18092bb92b3b07313218798ff34c1a714d205121ac55072e1ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/03/05 11:18 a.m.3 views

MAL-2025-2182 Malicious code in nazir-botjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ddab0c3325eaadec00a6d5eba950f178e3492648462583e41bb4d49b654fcf6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2024/11/29 1:33 a.m.4 views

MAL-2024-11138 Malicious code in distdiscord-v11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b003b8e11ce73b0dd1259da43ba682eb4a34b0ac0d4b48559af5bc6489c216be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSV
OSV
added 2024/11/27 6:8 a.m.5 views

MAL-2024-11048 Malicious code in k8s-apps-wordpress (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 40a470c4b317b1c3a7ca0ef77aa42d47d230d8b4d2cfe94f870ae1232c927327 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSV
OSV
added 2024/11/27 3:32 a.m.4 views

MAL-2024-11081 Malicious code in rollup-plugin-hotreload (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a5f1926b00e34e20d1f36662b0093d46104a516288d7edd6faf52f4ce78a039 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSV
OSV
added 2024/11/27 12:56 a.m.4 views

MAL-2024-11110 Malicious code in toast-pack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88a339deff592f10f6ee1b2fa1d7881b787ed15a4713255009f176acd8088f55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSV
OSV
added 2024/11/27 12:14 a.m.8 views

MAL-2024-11009 Malicious code in ssc-user-guide-pro (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b28cdf39e031f4bad55901266218e082e89ddc065dddc3334657fbaf84b7045b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSV
OSV
added 2024/11/27 12:13 a.m.8 views

MAL-2024-10993 Malicious code in patch-package-lucky-video (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88d9dc3ee05cdeba38d59bd671ca844e48a0497f15b16164dc9c5fe8fde4fa06 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSV
OSV
added 2024/11/27 12:10 a.m.5 views

MAL-2024-10992 Malicious code in onboarding-ops (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6407e18f5ffaba9b33a89b526c75f2752e724200fda34ccb433db01957a188f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSV
OSV
added 2024/11/25 2:5 a.m.3 views

MAL-2024-10949 Malicious code in web-bz (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0be6c98e8623bffb583f6b3c059c4b8a367a11e9294e1d13c168cd7d2f10552f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2024/11/12 12:26 p.m.3 views

MAL-2024-10614 Malicious code in coinbse (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4aa9d0632071e233fdadb5454835f5b7f1486a8369286e650dd81149dbe5a7f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2024/11/06 3:42 a.m.3 views

MAL-2024-10433 Malicious code in gnache-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7eb71996ea970cd158615c28425049fe75cde7631e0e94d80887b9df113ab876 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2024/10/22 6:5 a.m.6 views

MAL-2024-9457 Malicious code in module-with-node-gyp (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ad0399f36bb5f87a753f7cfc481eebea229a86f704ea5e7fe4b1c82bb19bf0a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2024/10/22 6:2 a.m.4 views

MAL-2024-9458 Malicious code in monday-react-quickstart-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eeeade5f5aa91633c87be63e8346db1068379e848dc4eee6832107dbb9f96cf3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Rows per page
Query Builder