561 matches found
Inductive Automation Ignition Software
RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute malicious code with OS application service account permissions that the authenticated, privileged application user did not intend on running. 2. RECOMMENDED PRACTICES CISA recommends users take...
EUVD-2025-145066
Malicious code in rafaelrocha npm...
EUVD-2025-54640
Malicious code in embarrassed-plum-ape npm...
EUVD-2025-44703
Malicious code in verticalwalrusz3n npm...
Malicious code in yuni-liwet93-pore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1633a848664dab4925ce878d0eca33dd4050a01b134cc42ec66e59b061569f8 The package yuni-liwet93-pore was found to contain malicious code...
Malicious code in feature-reporter (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 005ae57fd871f8d3448911152254fcedcae9af32d34e04f01bb020307c5df831 Any computer that has this package installed or running should be considered...
MAL-2025-48768 Malicious code in vectorize-perf-alt (npm)
The package vectorize-perf-alt was found to contain malicious code...
Malicious code in de-sxm-reactlib (npm)
The package de-sxm-reactlib was found to contain malicious code...
MAL-2025-48742 Malicious code in naftis (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb1f0b6ee3c57373a787813a9b3df26e367df1e7f1601d9986d58a352c48fa49 Any computer that has this package installed or running should be considered...
Malicious code in m0chan-does-notexist (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1d626c9b409f214548f5c0c09aa9b0336dead92b7a4f8c5f290a7f80d4ff87f Any computer that has this package installed or running should be considered...
BELL-CVE-2023-53557
Bulletin has no description...
Malicious code in nilepkg8 (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
EUVD-2024-43490
Malicious code in bioql PyPI...
MAL-2025-47576 Malicious code in adobe-alloy (npm)
The package adobe-alloy was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: google-open-source-security a8e952541082c8bec5f3b5c23a250995aa6d04b35925087502b6ed7100760d27 This package installs a dependency hosted on a custom domain that runs an inf...
Malicious code in discord-open-source (npm)
The package discord-open-source was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 8428b55f07242cb67f60ccba8d02146498255552e19df02bb8d05fce64279ac3 This package installs a dependency hosted on a custom domain that run...
MAL-2025-47590 Malicious code in mutual-ssl (npm)
The package mutual-ssl was found to contain malicious code...
BELL-CVE-2023-53243
Bulletin has no description...
Malicious Package
Overview @magda/semantic-indexer-sdk is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
MAL-2025-47111 Malicious code in @corp-ais/mychannel-shared-libs (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c5f0e8cfbe80a4f93fca6e505e8d783eb28bae0448cb594f0affede6c773532f Any computer that has this package installed or running should be considered...
BELL-CVE-2025-39711
Bulletin has no description...