626 matches found
EUVD-2023-49359
Malicious code in bioql PyPI...
EUVD-2022-26853
Malicious code in bioql PyPI...
EUVD-2024-37699
Malicious code in bioql PyPI...
EUVD-2024-19516
Malicious code in bioql PyPI...
EUVD-2025-17344
Malicious code in bioql PyPI...
EUVD-2025-5957
Malicious code in bioql PyPI...
EUVD-2023-24694
Malicious code in bioql PyPI...
EUVD-2023-44596
Malicious code in bioql PyPI...
EUVD-2022-32080
Malicious code in bioql PyPI...
EUVD-2024-54652
Malicious code in bioql PyPI...
MAL-2025-47164 Malicious code in @nstudio/nativescript-checkbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ac10be560243885c47e80e47d545e8006f285d8fe9f5756c7b92f9cd2085639 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2025-30278
An improper certificate validation vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the following version: Qsync Central...
MAL-2025-6377 Malicious code in vite-plugin-reactjs-refresh (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4abf589cdec43e8ba609988d38155d5965b59ac6a83b1d251405fdf13629cdce Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-6359 Malicious code in cookie-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5c94db01436156d78a21b41d74cf372b4e12f89a2480b8986397309b1c4165b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-6339 Malicious code in query-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed848ba7a41198ae72f2a0c36d31e627fe5ca7503bae293fe204e3a3dff65620 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-6243 Malicious code in grafana-internal-config-loader (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 031305432de00d5ead02ddc27a8482b7b62a8594c3d2b71961716b00672d654f Any computer that has this package installed or running should be considered...
Malicious code in sha256-validator-pack (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 453f997676ddfb37b97659a39bdc5de8d8c2fc1b070f5feeda72545030850113 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-6168 Malicious code in internallib_v730 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 07e8e1cdef56b10548337d022340fca1a465be7d7a13b0ec39e4c2193d349102 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-6087 Malicious code in dewiz-xyz (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e73eec59fc359ccdddf7aea6963be27ed045429eae410109c1d749dae6761e51 Any computer that has this package installed or running should be considered...
MAL-2025-6084 Malicious code in creator-portal-web (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c5327398bd579ef0663ef6e1919049ade891f5f0f39b28f9314ce8d3a6040017 Any computer that has this package installed or running should be considered...