162 matches found
MAL-2024-11489 Malicious code in vue3-tiktok (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11443 Malicious code in sdk-interface (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11404 Malicious code in nezur (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11353 Malicious code in evocater_libpnpmpublic (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11332 Malicious code in compilre (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11307 Malicious code in autoball (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-987 Malicious code in shoots-flutter (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6a612693cb09ca6ca66ccd908b99293ec9ade7b7a719b78f0743332cba338071 Importing the module triggers sending out the hostname to the package author. It looks to be a placeholder/pentest activity related to BytedDance. --- Category...
MAL-2024-11637 Malicious code in monoliht (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b0594d4897f61df4c3fce7993c0b5070f13b76f785a7a964bff40e65b566bfd5 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...
GHSA-P72W-R6FV-6G5H vulnerabilities
Vulnerabilities for packages: druid...
RHSA-2017:3452 Red Hat Security Advisory: rh-java-common-lucene5 security update
Bulletin has no description...
RHSA-2015:1044 Red Hat Security Advisory: virtio-win security and bug fix update
Bulletin has no description...
RHSA-2013:1441 Red Hat Security Advisory: rubygems security update
Bulletin has no description...
RHSA-2011:0163 Red Hat Security Advisory: kernel security and bug fix update
Bulletin has no description...
MAL-2024-11604 Malicious code in hahahasillyxd (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f43efeb00e7f4fc1fd008a187b98b8c8fee1cf25f30ee8723ce1080b5fa6a323 Importing a module starts downloading and executing an infostealer, widely identified by AV/sandboxes. --- Category: MALICIOUS - The campaign has clearly...
MAL-2025-914 Malicious code in dependency133434fr43437 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9cc68a9f63c26e040592558af43d4f7ef6369cbf6623c8f2558fc490acfabb73 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2024-11703 Malicious code in security-automation-job (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 38eb272538ac306cb26b84b3887bf6fd77f00fe00e64a10814f34258702eb442 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-3452 Malicious code in mytonctrl (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f997ec37c93c6c57b2a2704bba3894f44988a24fcee8ad1766ab15ac87460c3a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-4239 Malicious code in rqeuets (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 92b72b3d477812895ac9758fb085afd1bc8840f817d7bcc491b4b36c8215e79d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2024-11525 Malicious code in arnold-toolbox (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3af217ab42360fa62b1e1e03668e6d7e45ce26df78ea96f2c6726838d74d82d1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-2983 Malicious code in otc-metadata (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 75435783250226bc7f234b0f98e4fb2b9777254a2ddbe179800f61577f6308e0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...