225920 matches found
Malicious code in pypi-package-explore (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 54257ec88b5f7a5bd69177f84a4c396ab208e727ba1c7b079056f1fab2705c37 Package presents an extremely deep obfuscation of a code that is imported during installation. The exact behavior is unknown, but it includes loading encrypted...
Malicious code in kol7a (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a81ab7bff0ce4494ac98d492444f18a8ec22e0d34f4cbaa30314de910b6a1039 The package kol7a was found to contain malicious code. Source: ghsa-malware 34930716d17313165d83a1830db1542583fbd4c6e6cf873c66cb3dfb5fbfb336 Any...
Malicious code in pytorch-mutex (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4959fc9ffb04b2e53d068fa3e6564a21dd3bd4b6374324416a643c3e58ebe330 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in dotenv-embed (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6bbecb8b9bb96fcd71af0764df5106d8163ccb94c21960bf858383ab85d10308 The package dotenv-embed was found to contain malicious code. Source: ghsa-malware eb5a7942b654b4da1fb16e67f19ca82b3b52c4fcce4db85e9d5596571651c6b7 A...
Malicious code in syntax-jsx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7fd1189ee316a8c3e44060564a0bbcf1fd7409333cfb2f2e5035271f94b93f27 The package syntax-jsx was found to contain malicious code. Source: ghsa-malware b04dc357cbf3cdb2e7e66b09a4ba49cd101d7f3e5be0655514403145bdbff762 Any...
Malicious code in syntax-flow (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cbb8a2a22bbc3655a87a5ddf26e53b87d3bd73e9f78dda4b586aefd5841f902 The package syntax-flow was found to contain malicious code. Source: ghsa-malware 717bc212f20f0c9dab6ffbd30716a7bae5cc63b886484d0c2d7ee5286b94eea7 An...
Malicious code in debug-fmt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 049bf4db6a598df3cc4db93a71b765670e9b94be0c835ae183fd91c13fe99d8b The package debug-fmt was found to contain malicious code. Source: ghsa-malware 1f7e76c50ec40bd53847463f61469ebfb4691c221c290d98fed82736214216cc Any...
Malicious code in @nayzak51/primebeem-db (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eda80707c579faf8880cabeefa8ebf20fb33b076337d64cb93a3ebf6e210e29b The package @nayzak51/primebeem-db was found to contain malicious code. Source: ghsa-malware...
Malicious code in n8n-nodes-zalo-fevox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aef5385f68a1dbba64d28aa388e3b9c2ad04f564b853ebee07e9422cac623662 The package n8n-nodes-zalo-fevox was found to contain malicious code. Source: ghsa-malware...
Malicious code in transform-async-to-generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3375385fb6c066445341256f9ce616582a713468ea0649853056c24b4aaf1776 The package transform-async-to-generator was found to contain malicious code. Source: ghsa-malware...
Malicious code in express-lists-routes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c51e8807ad317a804d1d70eac194db27d648b87308eaebf5e7752864c1c03e5 The package express-lists-routes was found to contain malicious code. Source: ghsa-malware...
Malicious code in json-mapping-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51d9a56e7e0fdb852db49a56abffcdded34d184708b167002fe2e199438063aa The package json-mapping-web was found to contain malicious code. Source: ghsa-malware 37a8fbc4bd325b28e53dce222bdb8b8e10ff6f5559edb6e97605e1ee5cec17...
Malicious code in @santandergroup-uk/edgehome-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e512dc1f3fcaa6ef57a8b842e2f6afe53092e6b4dc6efa83f398b40c59e53a6b The package @santandergroup-uk/edgehome-components was found to contain malicious code. Source: ghsa-malware...
Malicious code in knex.js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 04fcb32607ead73fe3f1c4443e807ae1deec8bda92999d19da73075af9d61805 The package knex.js was found to contain malicious code. Source: ghsa-malware a1c9b559496940535edc51721d08a3fccda2739e33e34028d59d97b305452aba Any...
Malicious code in grepleaks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fbb12eb31b13d48c3bceaf932a48991331324e560fdf0dba37561862844fa2e8 The package grepleaks was found to contain malicious code. Source: ghsa-malware 3017ce71ea8163be051e049bafc4e07b09bcc4cf3b05675c0e5c300c105705ce Any...
Malicious code in hiagentxhjrceme (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 817c81554dd53439cd7598a86165d6d0668444ead8912fb3cc0d4e0a96d35a93 The package hiagentxhjrceme was found to contain malicious code. Source: ghsa-malware 294835f0eba279be35d5f1d7cf834eba2af68a7f16e0b5730d79debc1245d83...
Malicious code in @row-components/pricing-embedded-sui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63928e8cf0861bfa8d3def2e822d818c038315c0a9d5918b6f27aeaab7ec9e3a The package @row-components/pricing-embedded-sui was found to contain malicious code. Source: ghsa-malware...
Malicious code in n8n-nodes-gg-udhasudsh-hgjkhg-official (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f177f9d8bad0a259983bc9f3e0880c59ee120b1e686e3f10b490ab0527beec3 The package n8n-nodes-gg-udhasudsh-hgjkhg-official was found to contain malicious code. Source: ghsa-malware...
Malicious code in n8n-nodes-xkwqpzrt-jmflhvbn-dsyocgxwmkelpt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9aa71b86b24db0a3a609b749d0b80b7868fa8adac9950d7898460f643ecf14c The package n8n-nodes-xkwqpzrt-jmflhvbn-dsyocgxwmkelpt was found to contain malicious code. Source: ghsa-malware...
Malicious code in hammer-jquery (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0e80d8bb4c65368f8c47250020a44866a9d32f6182fb7b5f2aed113723d35d8 The package hammer-jquery was found to contain malicious code. Source: ghsa-malware 72eb1b0f96efc21e3317dc341fbe50547a0d31332d3fc8470fc5a6c1c85053be...
Malicious code in @afg-ikea/ikea-modals (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec5202678b3acce22244ccd41e821e68167ca297f94450cb3b5debeac9ec2c50 The package @afg-ikea/ikea-modals was found to contain malicious code. Source: ghsa-malware...
Malicious code in cartos-dds-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1f496b09128d69f16784f2b9c7ac2d7f29982e802db47de225654f902cd2db4 The package cartos-dds-ui was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in researchpoc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 20a5e6f7ec432b0c41646f696c530fb5e46e034477a23d448de1ac3f18172bec Package mentions being a research PoC, probably for dependency confusion, but the code is obfuscated making verification of the claim impossible. --- Category:...
Malicious code in system-integration (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 106aadf74e260c98fb25e21fc8ff5bea93798cc75117200447687debe7f9fba2 When importing the module, code downloads and executes a highly obfuscated remote script. --- Category: MALICIOUS - The campaign has clearly malicious intent,...
Malicious code in tableates (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c69d9a3e244227f4e4146b60829ead907656c47989b3b83e1e5f56a2c06064ff Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in rank4222wun (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8943e200fcb8e9490a807104f88b84a3de7f0755cf78db6eabf1622e2116b7bb The package rank4222wun was found to contain malicious code. Source: ghsa-malware b038264ab3a4c0c18b74f04b49afed8d46c5294841a752da7aa3455b32eaa8e1 An...
Malicious code in ntwsx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 837a3de93825b2ebfadd814823c3dde7c072beb4afe605d220256e406efed240 The package ntwsx was found to contain malicious code. Source: ghsa-malware 9ab6bd61fcb4255b371cf5dcfee1103ef2d0574569eb5804ceb1aa9a3dae8bfe Any...
Malicious code in a4wu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65f0ae226eb7aef794335d5c42f8f82348461976fcd5188fdb74129e54e36f5a The package a4wu was found to contain malicious code. Source: ghsa-malware dbda459fa895bbd7a94bd12494e3092b3964f21d8a480826313bdb3f7302904b Any...
Malicious code in @transaction-list/transaction-list-sm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f4c569b0a7bbd5a1213b7870b3bdd269026c012ca486789f9ab27e115862bbd The package @transaction-list/transaction-list-sm was found to contain malicious code...
Malicious code in oasis-os-provider-messaging (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cca1eb9a5a42a34b2db68e6d23c9c2cd2cbe7098f742e647c9c6867b342e95ab The package oasis-os-provider-messaging was found to contain malicious code...
Malicious code in kwp-shared-components-production-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b2bf82ab1e7b02c2c3398dc73b6c1635e7f3e8da7f0a3aa11123d5db5a19b56 The package kwp-shared-components-production-system was found to contain malicious code. Source: ghsa-malware...
Malicious code in domino-elements (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d29d322166d012b639664f1711c5c9ca4353508a8ffa2e48eb5b7b14bbda296 The package domino-elements was found to contain malicious code...
Malicious code in public-site-boostmoney-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7643372e3a22915c9385625b458ae16e2bb250b4b55e281371dc61644125e00 The package public-site-boostmoney-ui was found to contain malicious code...
Malicious code in @ikeacn/icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6ddd87692493182b2706890d61f428455b6686768925e979c7ad73ed8aed0b8 The package @ikeacn/icons was found to contain malicious code. Source: ghsa-malware 1fd9107408adaea60e793eab4b396b70fa0ec9b4dff087a3f16e52eb21be6450...
Malicious code in un112 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1521874d670863316d54ec7213c067617cac71476025f1e398ca9ea01fe1f71 The package un112 was found to contain malicious code. Source: ossf-package-analysis cdd54832c7f264a3a18301f19d464ca271573a29173fe997e49e6c55b0ae1f87...
Malicious code in @fortinet/fortigate-autoscale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6100c8f444b32630601fbeee65c6af9df19979345ea5dc04740f40356c188e06 The package @fortinet/fortigate-autoscale was found to contain malicious code. Source: ghsa-malware...
Malicious code in @alluxio/common-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f082b7a72d74e881f10d6e0f01c1aef7a0a07b0f446d5a9d31a4763ffed2ed8 The package @alluxio/common-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in code-transfering-3 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 949a505895a5dcb808074bcddc1a084d12cfadb4b999712b48e012ad455ce817 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in terminalbrush (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 35e06fb41f9c1a4f082cf49a72dec89fc5b4d2f6580b97e527d291d50807b801 Package downloads an executable, places it distinguished as a Python binary and starts it. At the time of analysis, the URL was no longer active, so it was not...
Malicious code in spellcheckpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 063d67bbc510966bb83b63d1ba79a8279cf212b9028005800d6f2f99534eec46 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in ts-tweetnacl-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8035e1fe9ea296c85e726e0afad93eacff3199c25542e19153f914cc63251c12 The package ts-tweetnacl-utils was found to contain malicious code. Source: ghsa-malware...
Malicious code in plugin-vue (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03d02d8d83b614a55ba66663cbaa93bfc062bb8de63f438fcd60bea960610a5f The package plugin-vue was found to contain malicious code. Source: ghsa-malware 5dd13d282d1e3afa8890341ff538701132443043511faaac6d79e562de074cb3 Any...
Malicious code in storage-types (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2793f12e0ee779bcb14e4a4a5198059f576c8f832a64238e1584d6b2cd34209 The package storage-types was found to contain malicious code. Source: ghsa-malware 43db13077851634493e5c8eded5eb06487ff41dcb7dad90ab9a2e3101e14b323...
Malicious code in shroom-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12ce31b267373b04b6db8fa70688917b146c9cf34f2d548b58890a950af4f32a The package shroom-kit was found to contain malicious code. Source: ghsa-malware df93160efafaee42f3f1c238618282cd6845e4fea4f6b0804f5e759934e60f71 Any...
Malicious code in oce-collaborate (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8f69f2284ec7835136d41eb191227cc52ebfeafd3b33c0f7ce2d94ffd24cb88 The package oce-collaborate was found to contain malicious code. Source: ghsa-malware c217eb60fb78e5a6fde1b59cd586b4ad864bd1ad9cde77d6b50a79341d4d58d...
Malicious code in oce-icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b843dd5f2dd468eea116bc6b01258c72903738ea423def44e73bbee3e0a477f The package oce-icons was found to contain malicious code. Source: ghsa-malware e946a5aefa4f4734044a2667883bff32c43c93401630708063066e1348fb2b25 Any...
Malicious code in jsonwebauth (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 683ba88a9e72aab5f114bdd388e92a35230a3fcad8178b8c8d5e5e6fddf7b829 The package jsonwebauth was found to contain malicious code. Source: ghsa-malware c1c270e023225a3ab0872fa3ea9f9b94b0320639bdaa6fb0d30e9b65c9ba1db2 An...
Malicious code in tor-libsignal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3281075aed24ae2af07fd17a56499318dcd8cd0fa836f60e1fa76814b90c2742 The package tor-libsignal was found to contain malicious code. Source: ghsa-malware 25164e8116dd5f0b085529d972fb628013ac35df2065ee934693a23bd13da788...
Malicious code in genki-analytics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e636da349bfd5c22a704e2651968ebd55878349304e3f3d69904853a440aa407 The package genki-analytics was found to contain malicious code. Source: ghsa-malware 791197b134fc48f105a6db2a597a13ea389bd70b75daa689a891a96ba1d251e...
Malicious code in @diendh/n8n-nodes-tiktok-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16a12e0244dc2ac8964ace7fecf5dab971eb0b394e2979bce9a3e12ce33b01ce The package @diendh/n8n-nodes-tiktok-v2 was found to contain malicious code. Source: ghsa-malware...