MAL-2026-4826 Malicious code in wm-mapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d3ca8c31fe1e2448adc737f90ef9278202575bc77d3a4a5206e62920219e54a0 The OpenSSF Package Analysis project identified 'wm-mapper' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

Malicious code in wm-mapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d3ca8c31fe1e2448adc737f90ef9278202575bc77d3a4a5206e62920219e54a0 The OpenSSF Package Analysis project identified 'wm-mapper' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

Malicious Package

Overview wm-plugin-native-functions-restorer is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization an...

MAL-2026-4337 Malicious code in wm-plugin-create-iframe-capturing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b8f21008e1afe359d81b5a894a1b3977ba8a70993db9afc6f6d695cb37ab3f5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview wm-plugin-json-conditions is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

MAL-2026-4339 Malicious code in wm-plugin-native-functions-restorer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b56a05c0c4409a73fdb43bcd1cd03212baff2d79072fb687c8ed7923f0af5036 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2026-4338 Malicious code in wm-plugin-json-conditions (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 43ae510c22e7ea36051bfaa2a241bc7f8035d9047c3fe927438ceef2f2ca81cf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wm-plugin-native-functions-restorer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b56a05c0c4409a73fdb43bcd1cd03212baff2d79072fb687c8ed7923f0af5036 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2026-4342 Malicious code in wm-w5g-preview (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5bc0860496300da0db2cc794dea65576b86229a620d4de1b2da80ad79caa333f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview wm-plugin-teach-me-widget is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Malicious Package

Overview wm-w5g-preview is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in wm-w5g-preview (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5bc0860496300da0db2cc794dea65576b86229a620d4de1b2da80ad79caa333f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wm-plugin-open-teach-me-after-deployable-played (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 655533b31e25a157ee83f60bf9745992f585b321861539de7e40a9a7549dd38d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2026-4341 Malicious code in wm-plugin-set-walkme-language (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3a79fac1678c77b806378e3a6a61fbe14204f4ff38758d151a231e0d990ea94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MINI-WM5G-6J4J-8RF8

Bulletin has no description...

Astra Linux - уязвимость в fly-wm

The vulnerability of the fly-wmfunc utility function in the fly-wm window manager is related to improper memory release after its use. Exploiting this vulnerability allows an attacker to cause service failure...

Astra Linux - уязвимость в fly-wm

The vulnerability of the fly-wm window graphical manager is related to reading data beyond the allowable buffer limit. Exploiting this vulnerability allows an attacker to cause a service failure...

Astra Linux - уязвимость в fly-wm

The vulnerability of the fly-wmpam window management tool is related to reading data beyond the allowable buffer limit. Exploiting this vulnerability allows an attacker to cause a service failure...

Astra Linux - уязвимость в fly-wm

The vulnerability of the fly-adjust-palette utility in the window graphical manager fly-wm is related to the manipulation of the zero pointer. Exploiting this vulnerability allows an attacker to cause a service failure...

Astra Linux - уязвимость в fly-wm

The vulnerability of the fly-adjust-palette utility in the window graphical manager fly-wm is related to reading data beyond the allowed buffer size. Exploiting this vulnerability allows an attacker to cause a service failure...