359 matches found
MAL-2025-4851 Malicious code in mediaserv-paypal (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 15084239e2cd202b683ccc27fbc1eca45909c74e4e992b9d5e646ccb07c3cfd7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4876 Malicious code in rpc-bot (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 87182c83e9db057d45382e581932553c84fa77422e5721046571790adba09005 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4802 Malicious code in @loybung/provider-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1dc5e2aaa75780249ef49329cc88e74468511da4956872cadb22549951afb87e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4795 Malicious code in @loybung/discohook (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2dac5ac825599d74da445d116432e53214d07346514de5ae412176b7977c2c69 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4805 Malicious code in @loybung/textfont (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 36aa7aae9f52d1ffdfc4373795d75aa854663263402260a93cd100509f9a8833 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4801 Malicious code in @loybung/launcher (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4338cbadeeb701c891e1235d52d6204c2fcec842a555133308612257b8409932 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4806 Malicious code in @loybung/textreplace (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03c26f5bb98082cc1377c84ac4dc07a726cc856db23d49346f28ce6c19ff026a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4810 Malicious code in @loybung/weatherapi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 90a45282e3a6e0548742dd05cd29a7be7c936a1f4828f697af9a092acc90f2cb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4884 Malicious code in smart-request-buffers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c193e11c3cf5464ecf688ef533a29644044e7786f835d3a0f8d4e4fe1d96d8c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4871 Malicious code in react-intlist (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d68da68127cdae55b189751f3d17a5882f56394b012d93fc26e35c36fe6aa456 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4910 Malicious code in winfsp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7373ebded5664ff6ffc6ef61005630f01b8030ae072e04b3cf05e2cd56c2b20e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4892 Malicious code in svelte-local-storage (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bf4b1abe16c287b8e67a7dae3b46466e04e1969aa24991fa44e889983bb2e86e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4842 Malicious code in knn-kdtreejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e3117136c7dbf6c71fe3eced4aafbd5ea18b96272cc7f5aa5d58eccab6c8d17f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4745 Malicious code in gs-payments-core (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 13deac0bd384330c745707f11e00851a1a9fabd272ad4db4f7e8badf0406ae97 Any computer that has this package installed or running should be considered...
EUVD-2025-17316
An unauthorized remote attacker can bypass the authentication of the affected software package by misusing an incorrect type conversion. This leads to full compromise of the device...
MAL-2025-4674 Malicious code in @sasmeee/igdl (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 50d2d88fbf066d2cf61e4e0c78589fb68f9b35f261c3ee3bf1c852cb431272ed Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4688 Malicious code in keypair-core-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7c2a54a7dc344c67f1694d2a8f965c6ab161011af4fd98177d19a9536a0218b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4689 Malicious code in keypair-decryptor-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 28b7a13ea11bbb26ce1785b3784f6dcd3470a60ad16e2235d40089c17023e8e8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4691 Malicious code in ownersv2-obfuscator (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a0f9f47de4b7578abfcf53d93e7033ba0e908053bac0650fee520c4effa57e26 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4685 Malicious code in fluro-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c04c138df7be76776b255750944cf66472503de25abd93507c7ab4d8edf33c58 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...