225914 matches found
Malicious code in ac-polyfills (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a7d9d049932519bded5d12b8627523ef63dac69179b1ce873cf4cd8b7fe6849 The package ac-polyfills was found to contain malicious code...
Malicious code in monkey-tags (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d92f2c8690bbb505437734e0b5ffe74a1c8a9411dde8716bd9440600db0a0f1d The package monkey-tags was found to contain malicious code. Source: ghsa-malware 18cc7d0ec7d65006d2618f716b268a58021234dc7bcad189f062848160afd16f An...
Malicious code in ac-element-engagement (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 781104558212062e46f87c009a2a0af57fb00f707c878b53dfc5a7c241cce06b The package ac-element-engagement was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in ac-checksum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 421654f0d216d3cb6af35eb9973ccd59d6d8c7c3d8c618bf1f49343a7756aa47 The package ac-checksum was found to contain malicious code...
Malicious code in ac-dom-styles (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e39cbc9f0e4b0b813dacd1b2dbe7211e456f56b12dc39033aaa4f20064b90e7 The package ac-dom-styles was found to contain malicious code...
Malicious code in adminbypasser (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 867991d0e6c74f15c2f231c002867172a4e03044a328676cf9b2ec07a7e48f68 Package silently downloads remote code and adds its execution to the autostart. During analysis, the remote domain no longer existed. --- Category: MALICIOUS -...
Malicious code in ethers-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 315365a10d9e3322792c18bdb8c5a8e620bbcc2a9ad8d5a1d5ef139ef6e47777 The package ethers-lint was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in test-npm-style (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38db992411a56d07cbda15c79d3428dddd769488313604ade2606f11da3e6e4c The package test-npm-style was found to contain malicious code. Source: ghsa-malware d89c00ba3209ce1a4f9ffd6f70034eacdb716fcd4d36b0a7f51bca6ad53b9392...
Malicious code in xpack-per-user (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd02e72044e1a432dd520594d89d568cdd80feaef160f24160f04cc549662c08 The package xpack-per-user was found to contain malicious code. Source: ghsa-malware 1182af58fca66833bb4a361e986f5ba960d9e9ab320cd787464bda92246392fb...
Malicious code in debug-logger-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d31caf4d90f11bf1428172dce6844e28db1dff1aead31c396b1cc6b0e0462d7 The package debug-logger-utils was found to contain malicious code. Source: ghsa-malware...
Malicious code in 0xhash-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6533d0ccd6be4affddc7247e6f5e925ac35fbe47d877eb2cc0ace6e493acc497 The package 0xhash-utils was found to contain malicious code. Source: ghsa-malware df192d86e51f442508e66c54064ef3c8d9c2cbe92133f87a522bc968dc4f6f45 A...
Malicious code in https-servers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a36dcc502283d554435cbf1426fd49634a8889c0839134cb84847739226aee3b The package https-servers was found to contain malicious code. Source: ghsa-malware 36ca75a183037ab06a63d3ba308f3fe6f3207772c7b77df966768e3f10e15c00...
Malicious code in greeter-pro-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 14dfc4441f09da7c2365f0bda8f0406dfbba98c6c127d94689f8acbbb0dafbed Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in optimizer-cpu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96d9a5679e6f23c70908ce2670edfdec83e685bcab26cddb979e034b158c4748 The package optimizer-cpu was found to contain malicious code. Source: ghsa-malware 47b72b719d340d2e4a2610cd788db370ee5df468243efd141e446a1a1c140bf4...
Malicious code in chai-as-advanced (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0acc3e9150ffbd93c9187a1ce93c58d03d138fa530829012be29aefc6ba148db The package chai-as-advanced was found to contain malicious code. Source: ghsa-malware 83db7b7b5304fb643d201e46d499c0b6c8e87a25bc93609bb4c704cd9aa8b2...
Malicious code in web3-meme-tool (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 62aebca1848d232cb70d5bacf954626ca7d0fd1d5680bb8ab45777aa9347f5ed Disguised as metadata checker, packages are designed to exfiltrate hardcoded or given data to an obfuscated remote target --- Category: MALICIOUS - The campaig...
Malicious code in metadata-checker (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 222755e960642163a0918eeb42baef3dedec6676e084a02742210fb83b7d99e5 Disguised as metadata checker, packages are designed to exfiltrate hardcoded or given data to an obfuscated remote target --- Category: MALICIOUS - The campaig...
Malicious code in digital-checkout (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3254d2b582a5e3da6587b8994dab665d74a70e88b0383d6dd0d5f96d82e7a33 The package digital-checkout was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @helloflex/widget-next-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ca9fce3cc7390ed9fa54426eb0404651c2679a146b83aaf537d0d4c4cf9ba2c The package @helloflex/widget-next-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in pipelinepoision-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 30985e20ed386fc211690f5618db078ae8c782039fcc36d1109955b74c3251ff Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in conp-dats-editor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adac2b3e811707a0113ec1484330ebada12a632966c81143eab49233e87cabbf The package conp-dats-editor was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in internallib_v157 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d07f4a0d2270cdcb827bb50e9f546d7c4ab3b07ede66343b90478831a731b83 The package internallibv157 was found to contain malicious code. Source: ghsa-malware 2a4eddb6af3191b7183a9223407a3a1b9fb4e1b4e96da5ee15af1ae2f0515ac...
Malicious code in tailwindcss-forms-starter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91e47d3466ef7beca3f6d4cc16c77c91c52a3d29dbbe4d484fcf3e2397f18d2c The package tailwindcss-forms-starter was found to contain malicious code. Source: ghsa-malware...
Malicious code in cat-retail-app (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28595a83aef3c3c9726d6ab0fc4b4d761a0a0c9f12ac91d4d84bda7135d46786 The package cat-retail-app was found to contain malicious code. Source: ghsa-malware b05f145df7999baec69425a057fe9a33c6a65726ca898c89b80cb23526f54bae...
Malicious code in @jes4l/react-pkg (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbda4aa24c8a13be0d237b206780fc2feb5778e65cebf430e2124e49a390cdde The package @jes4l/react-pkg was found to contain malicious code. Source: ghsa-malware 2bd5520cca8e57269ded7f69993dc5257f9085a6706d01d7bc60b17ec80534...
Malicious code in express_update (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28c7b65df1b37b94c79306e3445abeee20ff9f0b8757efec76a2c3ae2a258e78 The package expressupdate was found to contain malicious code. Source: ghsa-malware e6705fb6bba3859557f5fcc5e759b38a88a71c878260762672e3e161afde2c0e...
Malicious code in log-symbols_updated (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92d79723570a5dc0d85c63b9ed1ab129a1be11ac69a75c1d2bd8c5cdcc12f6d3 The package log-symbolsupdated was found to contain malicious code. Source: ghsa-malware...
Malicious code in locate-path_updated (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f73581936729923d61e5195115627693c9929bc048b9900da7dee76db9b6b37b The package locate-pathupdated was found to contain malicious code. Source: ghsa-malware...
Malicious code in @purecore/rabbitmq (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e503973dbf2c860017e4ea8118ddec5cd43a537c32eb8fca24ac544a86d8822 The package @purecore/rabbitmq was found to contain malicious code. Source: ghsa-malware...
Malicious code in dspmobile (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dcd390d34dbfd7246c65b551f8b71dfaba4b78fa438e818cab41a0ea35716c21 The package dspmobile was found to contain malicious code. Source: ghsa-malware 73466b34e7f0da321f410baa9db15370fbf0563af429ef587315608e3507f2b6 Any...
Malicious code in tailwindcss-animation-modern (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c6fbd472c63dae399a454decb6c6c097b7ae23766e0962ec081f0ad685ea451 The package tailwindcss-animation-modern was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-vite-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f5300073ebcda0869cf258bc5c567c6afc40942b14d14a97bfeaa2eaff1b9c The package react-vite-sync was found to contain malicious code. Source: ghsa-malware 971cc1d747c2d072e4a3cc272143be37bbd2162968dfd682012890e87cda562...
Malicious code in react-count-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bf23710693921f6b69d38cf0abd8fa7ce2f181bfa2df9fa9777f59e0e4954e7 The package react-count-sync was found to contain malicious code. Source: ghsa-malware 9a44b72820f2af0bcbd60f65787e0707617e4f7428aa2c9407bec9f8decb07...
Malicious code in web3-chain-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8092971594fb2e6c9a5748ec492ca88c9a8cc396917b314f09e5c3c85e0d130 The package web3-chain-sync was found to contain malicious code. Source: ghsa-malware a73489541e1d91e9e98d8ee52b10cc423ddd5b990bee23731cfa78e9bce3be0...
Malicious code in statssol (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 578ffe3c11af717c95f71893133a46e8e418742109d414583b3ccc5044fa3a99 On importing the module, a remote code is executed. At the moment of analysis, the remote URL did not return any valid script, presumably as the package was...
Malicious code in dcf-commons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ecd9b19358b9d41493159b26a9674d97911b844be08acab24e938855a796ada The package dcf-commons was found to contain malicious code. Source: ghsa-malware 53fcdc9ba42b2a38388a8f7892b9ba26435e40dd2c5ad4247358620829f70b58 An...
Malicious code in @msecscc/gaia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35c005bdb108aca2e4bc9842086fa98dd73b442764e4e7814fd6e7a9fa7010dd The package @msecscc/gaia was found to contain malicious code. Source: ghsa-malware 5186ac1e518b181d1e03469aa042d8dddefbe3345b3c85d5b795ed329e5c3a73...
Malicious code in internationalized (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bb89ff076b952ec364a4b84d4b37a0f83632bea82a2a63b9153d6af9a6145ad The package internationalized was found to contain malicious code. Source: ghsa-malware...
Malicious code in confluence-analytics-support (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ce55572584393fb9c1af657085c599ab0f699fd5bf4bfbcda2a47560c6a717c The package confluence-analytics-support was found to contain malicious code. Source: ghsa-malware...
Malicious code in mdp-client-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bae22cc58ac4c2a2b449514ef62c82fde3dd2d6d0d5697b3689f16c8583e62b The package mdp-client-web was found to contain malicious code. Source: ghsa-malware 070c26f2080c516dd8c197674dcc76a911d4dfb62242027e1d50a04c4536f0b2...
Malicious code in test-for-ppe (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 11b30802efbc46f73d07dbb7b80490e86a7799e4a3abe24b128631de15ad41b1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in tablescene (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 75f24eaea6c977e93d35c431f9bedc66b7757fd5c5635425c28801dad3b50de9 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in remark-gfm-v4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3eb645996981f1453b9049a0d97b6f0b6c7ff4cadc29d4ccddd7f48cd65cbb21 The package remark-gfm-v4 was found to contain malicious code. Source: ghsa-malware 10eecf76003bd92639bb172deaa68448c44a5899c772fdcce927765011d807eb...
Malicious code in ggajsvjsg (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 252c9dd76e4c32a0ba1b698b9123dceda0e8e2f64c9981000193ffcf7c8de22c The package ggajsvjsg was found to contain malicious code. Source: ghsa-malware a2da1379c622300b641484fcb4e4edf2031991129e9db4ad8b070a3186a1085f Any...
Malicious code in docusaurus-plugin-launchdarkly (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e875ce6b5b0d95c7100cdba68bed891c712b414716f07147e6a3f04f4f9b4789 The package docusaurus-plugin-launchdarkly was found to contain malicious code. Source: ghsa-malware...
Malicious code in xpack-subscription-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2447449c96d24d0c693d9105d432d9818fa96fb0c408fb371a3dc15167960feb The package xpack-subscription-test was found to contain malicious code. Source: ghsa-malware...
Malicious code in deuro-landing-page (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b21bff5e6829c4c257d34d4ad60dd2d5d85f4f6fc67fdffaf74c86bb600ff7cb The package deuro-landing-page was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in cicd-ppe-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c9f1bfe5b5514b9b3a1ffad43be1f06d22faf12f031d325a9e689340c2ab16a0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in gridifys (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e5ce4a5dacaa769b90c359a5f03065f1d0418808b1ff366fe0d9cf6e21da4dd2 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in partnerss (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c370b0dbfdf4006f77ab698296da5eef2bb1a5ca43e91b932711518a3a0b8c5c The package partnerss was found to contain malicious code. Source: ossf-package-analysis...