284 matches found
Malicious code in @bookiply/core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd6b31f3177ed87f264b6338a9fe54bb910142b5622bba68372acbac801268d2 The package @bookiply/core was found to contain malicious code. Source: ghsa-malware 2887f360cb9e14cb6c6065ddc86c7aa69674edb8d09486f31b3256f376894e8f...
Malicious Package
Overview xyztttxyz is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Malicious code in react-jsonschema-rxnt-extras (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8e29ae9593362f6ccecd21ee9abaabfe0baf7da78be18ebeeef87277d03b1f56 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @nativescript-community/ui-image (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4e0f3449039a2352fc57480496becd92f22e7c723fa82f23ea58051945133a68 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in querypilot (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2c3898e80b9dd4a417ddf444390b2d4adef6f4ac18a5f2e63f2d25defde9db27 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3752 Malicious code in @myop/sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb5f8501100b711c468850e2985fc83d8369da105d072a9ce2543a0f189b7326 Withdrawn Advisory This advisory has been withdrawn because the @myop/sdk npm package is not malware. This link is maintained to preserve external...
Malicious code in airbnb-embed-frame (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 376bf68663b9b18092bb92b3b07313218798ff34c1a714d205121ac55072e1ca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2182 Malicious code in nazir-botjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ddab0c3325eaadec00a6d5eba950f178e3492648462583e41bb4d49b654fcf6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11138 Malicious code in distdiscord-v11 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b003b8e11ce73b0dd1259da43ba682eb4a34b0ac0d4b48559af5bc6489c216be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11048 Malicious code in k8s-apps-wordpress (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 40a470c4b317b1c3a7ca0ef77aa42d47d230d8b4d2cfe94f870ae1232c927327 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11081 Malicious code in rollup-plugin-hotreload (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a5f1926b00e34e20d1f36662b0093d46104a516288d7edd6faf52f4ce78a039 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11110 Malicious code in toast-pack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88a339deff592f10f6ee1b2fa1d7881b787ed15a4713255009f176acd8088f55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11009 Malicious code in ssc-user-guide-pro (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b28cdf39e031f4bad55901266218e082e89ddc065dddc3334657fbaf84b7045b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10993 Malicious code in patch-package-lucky-video (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88d9dc3ee05cdeba38d59bd671ca844e48a0497f15b16164dc9c5fe8fde4fa06 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10992 Malicious code in onboarding-ops (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6407e18f5ffaba9b33a89b526c75f2752e724200fda34ccb433db01957a188f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10949 Malicious code in web-bz (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0be6c98e8623bffb583f6b3c059c4b8a367a11e9294e1d13c168cd7d2f10552f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10614 Malicious code in coinbse (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4aa9d0632071e233fdadb5454835f5b7f1486a8369286e650dd81149dbe5a7f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10433 Malicious code in gnache-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7eb71996ea970cd158615c28425049fe75cde7631e0e94d80887b9df113ab876 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-9457 Malicious code in module-with-node-gyp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ad0399f36bb5f87a753f7cfc481eebea229a86f704ea5e7fe4b1c82bb19bf0a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-9458 Malicious code in monday-react-quickstart-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eeeade5f5aa91633c87be63e8346db1068379e848dc4eee6832107dbb9f96cf3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...