81910 matches found
Malicious code in @dotprompt/promptly-darwin-arm64 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 120d702f1e340ffdca19411824d16c6b6f381c53e0cb3e123982aaba2d013458 The package @dotprompt/promptly-darwin-arm64 was found to contain malicious code. Source: ghsa-malware...
Malicious code in pretty-ts-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3252c2860c3dca66dbc03f90407ce4f37b310c8e4f6bfc6485625b1b7d926cd2 The package pretty-ts-logger was found to contain malicious code. Source: ghsa-malware 0c811c327f0147313f0f5362e62e94d0aadf15ac53937bb3e88b133748db9c...
Malicious code in clob-utils-sdks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f20ec3dfbb49223ad3bda64fdd9d0af3f65ea9e3c972fc04ad497f4ff39f30b9 The package clob-utils-sdks was found to contain malicious code. Source: ghsa-malware fea942e1b67d99fb05dcee5e06429f58255c03be72abcfd2d022c7c458f4dd8...
MAL-2026-1943 Malicious code in clob-utils-sdks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f20ec3dfbb49223ad3bda64fdd9d0af3f65ea9e3c972fc04ad497f4ff39f30b9 The package clob-utils-sdks was found to contain malicious code. Source: ghsa-malware fea942e1b67d99fb05dcee5e06429f58255c03be72abcfd2d022c7c458f4dd8...
Malicious code in wildhunter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd5020979c3e9df261b6bb1525d91874b0c3dd993d6007d1f5f3fe40293a9a6c The package wildhunter was found to contain malicious code. Source: ghsa-malware ef86dd0267c3525fb9b185c8193ead59125fee1e3e962e357ac027f43dfc74cf Any...
Malicious code in supportgameapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a47bd58f99ca83621adcd03a62db6b246a9bef49500f502bab948c371f7ead79 The package supportgameapp was found to contain malicious code. Source: ghsa-malware 62c4a020a9479973b325083e07d2a5a87d4afdf4260a2b2c78a8e164d0e01918...
MAL-2026-1970 Malicious code in supportgameapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a47bd58f99ca83621adcd03a62db6b246a9bef49500f502bab948c371f7ead79 The package supportgameapp was found to contain malicious code. Source: ghsa-malware 62c4a020a9479973b325083e07d2a5a87d4afdf4260a2b2c78a8e164d0e01918...
MAL-2026-1966 Malicious code in restaking-apy-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8aa08edde60ee1a5b831af5088eaaf1b9b490ab5975541f8036f4efac42d6840 The package restaking-apy-module was found to contain malicious code. Source: ghsa-malware...
Malicious code in json-parse-genie (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57744a9f0e3acf081bd2a75ca3684d01e3907f1eab7636e0873ed0ef1bf509ee The package json-parse-genie was found to contain malicious code. Source: ghsa-malware b2293df6ecd418ffd21c1112affa6571afe9a78ff596ce2dd1fac64a470c98...
Malicious Package
Overview jsonify-bundler is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-1935 Malicious code in jsonify-bundler (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0aa4b4269de8cd80d5dcc7106a78d477d668896627219a2f6e2199aef68f196f The package jsonify-bundler was found to contain malicious code. Source: ghsa-malware ce66e88fca5eb80c0c46cbfc975ac7fae97a50a6e0c7365cee57762e9a06b99...
Malicious code in big-nunber (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f23ede1c7b10923f9db48acb43cc160860b18e8be59b8bd2a26109ac8495ddd0 The package big-nunber was found to contain malicious code. Source: ghsa-malware af922fdcf3519d03326fd29435ab7bb179a1505a9082641e92a2f77f98332974 Any...
MAL-2026-1934 Malicious code in big-nunber (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f23ede1c7b10923f9db48acb43cc160860b18e8be59b8bd2a26109ac8495ddd0 The package big-nunber was found to contain malicious code. Source: ghsa-malware af922fdcf3519d03326fd29435ab7bb179a1505a9082641e92a2f77f98332974 Any...
MAL-2026-1936 Malicious code in lint-builder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 511fb0e1a1d0c7d5a01a50714b5d037b1b88a72563ccedc0b9a192bd36f87f3e The package lint-builder was found to contain malicious code. Source: ghsa-malware d8d7ec358909703548602accb473cdf1383fda5b1524af87a299b6f67dc9f063 A...
Malicious code in lint-builder (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 511fb0e1a1d0c7d5a01a50714b5d037b1b88a72563ccedc0b9a192bd36f87f3e The package lint-builder was found to contain malicious code. Source: ghsa-malware d8d7ec358909703548602accb473cdf1383fda5b1524af87a299b6f67dc9f063 A...
CVE-2026-32711 pydicom: Path traversal in FileSet/DICOMDIR ReferencedFileID allows file access outside the File-set root
pydicom is a pure Python package for working with DICOM files. Versions 2.0.0-rc.1 through 3.0.1 are vulnerable to Path Traversal through a maliciously crafted DICOMDIR ReferencedFileID when it is set to a path outside the File-set root. pydicom resolves the path only to confirm that it exists, b...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, caused by a race condition between perfeventoverflow and perfremovefromcontext, which may lead to reusing resource...
CVE-2026-32018
OpenClaw versions prior to 2026.2.19 contain a race condition vulnerability in concurrent updateRegistry and removeRegistryEntry operations for sandbox containers and browsers. Attackers can exploit unsynchronized read-modify-write operations without locking to cause registry updates to lose data...
MAL-2026-1931 Malicious code in react-native-country-select (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 769c13bead812dac05aaece43d165b10a7574c48a0a030b703e022325f736380 The package react-native-country-select was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-native-international-phone-number (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f86d66bcbb0f2abf075d3d4ce6a18c3a8ec1563e35087a9fe409f56f9fb64a9f The package react-native-international-phone-number was found to contain malicious code. Source: ghsa-malware...