MAL-2025-48442 Malicious code in ynab_api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 89651853affef6883ac4048c42b47d47b023d454db86fecabcd3b8ec15f1c0f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ynab_api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 89651853affef6883ac4048c42b47d47b023d454db86fecabcd3b8ec15f1c0f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview ynabapi is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

YNAB Classic - Exported components, External URLs, Runtime command execution vulnerabilities

HackApp vulnerability scanner discovered that application YNAB Classic published at the 'play' market has multiple vulnerabilities...

YNAB - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application YNAB published at the 'play' market has multiple vulnerabilities...