225893 matches found
Malicious code in docusaurus-plugin-launchdarkly (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e875ce6b5b0d95c7100cdba68bed891c712b414716f07147e6a3f04f4f9b4789 The package docusaurus-plugin-launchdarkly was found to contain malicious code. Source: ghsa-malware...
Malicious code in deuro-landing-page (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b21bff5e6829c4c257d34d4ad60dd2d5d85f4f6fc67fdffaf74c86bb600ff7cb The package deuro-landing-page was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in json-mapping-source (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 093c061d05775b657e0d7cd8c3473c81e17667c9f400d38dd2e95db3541bc622 The package json-mapping-source was found to contain malicious code. Source: ghsa-malware...
Malicious code in http-emailjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a9d03c741837fca8f8630f52d108b904dff1e056ff9b3bee73df663f691a59f The package http-emailjs was found to contain malicious code. Source: ghsa-malware cd9f06aa02e0e2ed77b3cedfb2e499b9f73530f95231f0fdc8dbeecc0bf2222a A...
Malicious code in https-emailjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8aff232c81a7253eeb9e10075207aebc5908976a9a1adf6009d750b444467db The package https-emailjs was found to contain malicious code. Source: ghsa-malware e6feff6e256b4c145082869f4ce5f64f2a2a15cab09caeef3e3d5735188aa0f6...
Malicious code in express-groups-routes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d54e03ffa96877bc24a447c0a77e5c096894fd82176e5705d62713eb5f20f10 The package express-groups-routes was found to contain malicious code. Source: ghsa-malware...
Malicious code in si-wsl (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f69e85a7d134f9914d7c06214a1e54622c4cd2548036f89a7de197a219cb598a The package si-wsl was found to contain malicious code. Source: ghsa-malware 883fa40693e776d8efd0a25d3d0cb70348f12f2226eaf627c28c490b46790973 Any...
Malicious code in incode-kyc-backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57c3747164b70855673dc56ebec2fbfcd084909fe71fe4ded3b1e80d4c155f53 The package incode-kyc-backend was found to contain malicious code. Source: ghsa-malware...
Malicious code in filespath (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 556cf54f0093609b5c80263f0ba00056293592e66eb2a212454692e9cca38a35 Disguised as file system manipulation library, the package hides an obfuscated code to communicate with a Telegram channel. Though the usage is not known at th...
Malicious code in tabulapys (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f43be05d02e16c7d381e105a4eae9a2701039d29435e6d83cb982f607bda623d Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in pathlib-v2-utility (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c8dc8b60e188fb941aeb9f5b6207d2c0fcab27719a142558498bf72d1602d992 Disguised as file system manipulation library, the package hides an obfuscated code to communicate with a Telegram channel. Though the usage is not known at th...
Malicious code in eslint-config-nlx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9a74a6c52535673292fbe7e0b1b58a412da2ba3ebd7a06dd21e944f40bb22a9 The package eslint-config-nlx was found to contain malicious code. Source: ghsa-malware...
Malicious code in @uselagoon/ui-library (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bda12522a61c5fdbf5675903128a573bb6dcf1bd1aee45a1340877450fb2112f The package @uselagoon/ui-library was found to contain malicious code. Source: ghsa-malware...
Malicious code in internallib_v782 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a9bbdd15886eccdbdf53f99ad4fa7b9f17035436062908eba77c7e312b1b1fe The package internallibv782 was found to contain malicious code. Source: ghsa-malware 9464930de83ed1ea306de3a4bfaa8b022df793d329bcbb9c72523418a652e14...
Malicious code in react-responsive-carousel-v4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 544d7ca19589218beb2b384a9e4e1ce7f64b130015ea62978f81adc7c6be5934 The package react-responsive-carousel-v4 was found to contain malicious code. Source: ghsa-malware...
Malicious code in l2-contracts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb0d21ff2e4e02ef879ddbcc41ef5c3d957ef37495bb5815beb17335f6579acc The package l2-contracts was found to contain malicious code. Source: ghsa-malware 8d05d077850c263135146bdb5b17ae9606f3f4fcd7eff921214f6ed00118cc4e A...
Malicious code in chai-promise-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8fbc46ec5143004a3a8dbf9138d7317efd21d323b0803a9c1c6f18b73f4ef7c6 The package chai-promise-tools was found to contain malicious code. Source: ghsa-malware...
Malicious code in baileys-dtz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 109634c377dbfbc10a7374fb473b28d85fcd47c764895f0c5e685a1f974a0120 The package baileys-dtz was found to contain malicious code. Source: ghsa-malware 14a91b23d2ef0b2dede76b5344cd84626e539f40e791d84f2a793b34d285e196 An...
Malicious code in aligned-array (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2e1b553bdbf785a336d224d5d3594c204455937469510cdbc423519287b2360 The package aligned-array was found to contain malicious code. Source: ghsa-malware ea83ead9b32cbe9a0c64af15ea5b84c39dad6ba94e7688ec712ceb8d1b2e8185...
Malicious code in typed-document-node (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aee62441fa4b75c4aee1044c18d8043570ba9e43b3034ce3ea6ae70aabf8373 The package typed-document-node was found to contain malicious code. Source: ghsa-malware...
Malicious code in transform-react-display-name (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad21ba0cb042f576642dd61d0639ac6da6cec5a468ff7b5cf0aab9164667bcb0 The package transform-react-display-name was found to contain malicious code. Source: ghsa-malware...
Malicious code in jshint-groups (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cf7ad9a58a15b025d84def4a32761ec77338fbcda7ef3ae459602eacfaf4595 The package jshint-groups was found to contain malicious code. Source: ghsa-malware fe1d6fde4a749fdb784071c856d26761b12fdceffae0020f2492a4a845eb04f4...
Malicious code in cat-admin-tool (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 34286533490c9ad41743b1eea6659d9c4fd3e62d1a830658b90840f3c49a6c8c Obfuscated code is used to hide exfiltration of basic data hostname, etc.. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but...
Malicious code in zabitog (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 23d4c7f55266f10f23ddf4a743bb4222b920c0e7f4472c1572a51831a3d1f247 Obfuscated code is used to hide exfiltration of basic data hostname, etc.. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but...
Malicious code in tableapy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7adeff5bc226723e8e3241a36596e3e99094553770deda5e89ac8caf7c0e0f01 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in picking-miniapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a65c40c2b2607ac2d8df224c24ff7fcc349a20993fadc53e544289d10a24a510 The package picking-miniapp was found to contain malicious code. Source: ghsa-malware 0d2a7046f9c602dfce90cc2c44cbbd8c7d8c9749929258f31e30fa899794e23...
Malicious code in @hemanshu_patil/xcode-windows-x64 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 044c927baff7d33a20876552aa27d1a0d5167313b6bc7775fb8b955ebf831e11 The package @hemanshupatil/xcode-windows-x64 was found to contain malicious code. Source: ghsa-malware...
Malicious code in @hemanshu_patil/xcode (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92580bc2a85c310fea71fe37f7acd35ce4f2662de3983ddd9357a4391208c790 The package @hemanshupatil/xcode was found to contain malicious code. Source: ghsa-malware...
Malicious code in connections-api-request (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 cbd9a8004eda10de0059f97712efe95c76e4302c5da5ff83e7fe3bdd3abd381b Importing the module downloads and starts remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in cowsay-deluxe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23689b5603efd5f0d639b4d6767c885941794f801324da60cbbe76afa159c139 The package cowsay-deluxe was found to contain malicious code...
Malicious code in cowsay-caps (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17661a2b5a74d9c2f32dceee01043881ce230427c3121c4bdd6f43987e49765e The package cowsay-caps was found to contain malicious code...
Malicious code in idv-script (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1bde07a7c30476e3cb1a1025e47aed005d4c7dd1795c0643ac2095a64e88b54 The package idv-script was found to contain malicious code. Source: ghsa-malware ee9e8b3868a2f4ff7829c20134e3617ac9a2d68093b156c31685710169c3f430 Any...
Malicious code in @casaverso/frontend-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48584fd15701448c3394285943de2520455a7b1fc07cead90b74d535437feda4 The package @casaverso/frontend-core was found to contain malicious code. Source: ghsa-malware...
Malicious code in client-desktop-web-installer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b5f6fa310c473bfa46f7607fbf1ec6746381d722da1ef24697b1f0b180c7fd2 The package client-desktop-web-installer was found to contain malicious code...
Malicious code in hangimani (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4eb1b67eac28a42f372ecaaca274a28d15972e3cc8e063492f977364538e6c41 During importing the module, package downloads a second-stage code from GitHub, which then runs an infostealer. After that, the downloaded code is removed ---...
Malicious code in wandb-widget (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 055598effefa8c10844b4dd82763ed5786623a04789583ed67d9a32e9342d45c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in dhgshop (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcf692c43737b2f7360ab017ae983283e98b2d2591a90a3efff90685a95d2632 The package dhgshop was found to contain malicious code. Source: ossf-package-analysis 194b5b6f2e47a1b70386a65d094c4b7d07a4fad392f36512b21542203c931d...
Malicious code in tableautes (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 db2caf2b50286de83c99e588ab33e86d828ff3c39fd0dac1c5f3da229cdfced7 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in researchpoc2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 543f158149a74f451a6b81f0c088ec8bcfbfb019477a57c17c44da8e58e2df3d The package researchpoc2 was found to contain malicious code. Source: ghsa-malware f4dc24e7a14111cc2df68f08d7e66d1493e2c98b12d547140775f16bfe49f56c A...
Malicious code in wallet-icon-font (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a89aa304ab9d5d7a44ee3e88112f9e35b876ad03a87090749c929e882289c721 The package wallet-icon-font was found to contain malicious code. Source: ghsa-malware 319f118931c6d4b46c7bf09c9474dd23e24873b1c32f093f631cc3dccd10ec...
Malicious code in chai-sub (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a9fb8daf2c61a42d820b2e0f8a846b9f2c95ed6a1cdc4c19a7d80f3398b4a21 The package chai-sub was found to contain malicious code. Source: ghsa-malware 94d4e0fa1548915ba6f77782a735206056554990f47f65aadc5781a23474b855 Any...
Malicious code in tabullates (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 499d47c3064299cb3d921b32ac9f22c2bab7b0b841b3de3a0cee3029625d5d26 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in digital-music-dynmsg-ribbon (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 539cc4d9f61bd9add970da883b5bd746b0b08614fbf948e143e6a35c606e593f The package digital-music-dynmsg-ribbon was found to contain malicious code. Source: ghsa-malware...
Malicious code in testxhjhka (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffa2b3af066bd5f02846fff50e2189f8c3a55cb62f71dd6835f4a999cd7dab42 The package testxhjhka was found to contain malicious code. Source: ghsa-malware 0552fa210ad2b24b0f9caf718edc7aed87d7cd7c610f380cf5348bd31b2fad70 Any...
Malicious code in hiagentxhjrceme (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 817c81554dd53439cd7598a86165d6d0668444ead8912fb3cc0d4e0a96d35a93 The package hiagentxhjrceme was found to contain malicious code. Source: ghsa-malware 294835f0eba279be35d5f1d7cf834eba2af68a7f16e0b5730d79debc1245d83...
Malicious code in tailwind-components-cli (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3916984542c5471332406155adc38fde3d254e8748b6e65caa1b9680663602c The package tailwind-components-cli was found to contain malicious code. Source: ghsa-malware...
Malicious code in mapkit-example-svelte (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7e50c0bfa7ac259128381d1495bc907b68e4721214789ed3316c0a57e387175 The package mapkit-example-svelte was found to contain malicious code. Source: ghsa-malware...
Malicious code in mapkit-example-vue (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a99b2a1b5d1181c18ff26056481018d107fc6fc38df563e0d7fba6aa44b7cd51 The package mapkit-example-vue was found to contain malicious code. Source: ghsa-malware...
Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f627f92f7e8b9ae99be35718e43eb73ed63a8818cea75a131f4bf85738cab2c3 The package @afg-ikea/ikea-kiosk-related-components was found to contain malicious code. Source: ghsa-malware...
Malicious code in @afg-ikea/ikea-family-registration-module (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1ac39afe31e807b61c9297e45f81042917f9e889e1ceb953fcaeba093c75576 The package @afg-ikea/ikea-family-registration-module was found to contain malicious code. Source: ghsa-malware...