225918 matches found
Malicious code in tailwind-autoanimation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 239c7b556685c76e1b25bf8ec701e0688ec975920ddc409d56365b6c38b30edc The package tailwind-autoanimation was found to contain malicious code. Source: ghsa-malware...
Malicious code in lnatainstaller (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a613dbd371593bf6bcb7ae528a4d7d7dba2fedfc6670c8cb493bb5cbee18f734 Package is designed to download and execute a remote script, which then downloads and runs a malicious executable --- Category: MALICIOUS - The campaign has...
Malicious code in cko-ui-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bd7dceb0840c7e96ac7bbc186b43c5a28941546823b4a13888aad0870a5aaa9 The package cko-ui-toolkit was found to contain malicious code. Source: ghsa-malware 06a8bb4e74769e572fe928f5f3fa63fb6ebda995375148b063d1730c43c4dc06...
Malicious code in @bingads-webui-component-legacy/storage (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1b0ef4dc1d3bac0f76b00b2134e0e39c61034e61e307a6390e8c92dacad80c2 The package @bingads-webui-component-legacy/storage was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in codefrequencychecker (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4202ead7b36e01a039c10a9379f617de02b50d5a69d5923652cfafb6f22067b6 Package exfiltrates browser cookies and passwords, and starts a Telegram bot allowing re-exfiltrating later. --- Category: MALICIOUS - The campaign has clearly...
Malicious code in kmeet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0007533264dfce09777a32ebaa374e6f78f7af5ea6d8df57d7a92ce22590a09e The package kmeet was found to contain malicious code. Source: ossf-package-analysis 6d1b109e5fb22408addfc93b1e1c172970312ae04f4b194bf5156abb941742ff...
Malicious code in aog3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f4beca0cf04d27490ff5d3810c60016dd45e733468a2897a3506f07e87399f6 The package aog3 was found to contain malicious code. Source: ghsa-malware c3e51e8acaf81129062757ad75cc484c4b5c3eda53f24c45689eb1aa04fa9635 Any...
Malicious code in @nestor_hexom/qyxb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0998609712e2df6e736e3da823279634b2cb874f692bba6f3ca65e452a4eb2a The package @nestorhexom/qyxb was found to contain malicious code. Source: ghsa-malware...
Malicious code in @nestor_hexom/garfield (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f17544d86efc038d88ce2e378bcf87c4f0c79d2341d955b6b420500f923a862 The package @nestorhexom/garfield was found to contain malicious code. Source: ghsa-malware...
Malicious code in garfield000 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector be6ac9b34a6d30c7ec66b0526fba72fda30519c2b623116e96663d5f3ec73d42 The package garfield000 was found to contain malicious code. Source: ghsa-malware 12e916aed66acb12d51a1fc4b756247f696863776624c776a3b38e84acbdc6fc An...
Malicious code in garfield777 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3626bdc556c590b7c14c524662be21b2c32762a7f92d11468d00e3b2bc11283c The package garfield777 was found to contain malicious code. Source: ghsa-malware 4f2e8d9e848ec713987e09976d8945d2e64232ae0f12a753838199009b91f361 An...
Malicious code in jh5o (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bec5d7cca5e58324cc7dea4623e12ad7bfad0a9ac6812a49373017a13c195a5b The package jh5o was found to contain malicious code. Source: ghsa-malware 01eaba01805549a7aa5e246fd04674dd562885c5fa3e0d4a6d30e1595e3fe945 Any...
Malicious code in klywarn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eee572661c3786dd95fb006ea7b4d99026b670f00f8e1999c1d961af6d612a2c The package klywarn was found to contain malicious code. Source: ghsa-malware f8ef3f65d8a5142e8b3a669ecd7f5b3891db0031a16d478f7b220fbb41f8d398 Any...
Malicious code in klywarns (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 933b7d6c7fb14a0375e83aafab601053676b49f24851d2c8d2ca0b42f4ccd517 The package klywarns was found to contain malicious code. Source: ghsa-malware 0fd557abca883cf56c7a2f4c1b67ff5b64577d170103a99df6a39a991bcd34c1 Any...
Malicious code in qyxb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce09b306f2b949cbfd82680013949af4f35e952cefb78adcb3283ba4edfa7a81 The package qyxb was found to contain malicious code. Source: ghsa-malware cc47bf038516eee59747de02f85db64cb689d347cd03338947b7dd1df7b24a3b Any...
Malicious code in vjri (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8e8acf8864bcd740ddcecbf3609839a194b93169c280c96953faf259ab2f715 The package vjri was found to contain malicious code. Source: ghsa-malware 6ea2ec85dcac95d0edd1d8fbc801b94b93cadbdee6568b330b565b545f85fea1 Any...
Malicious code in wifzap (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3be4876590c997a82e63ea5e8f107a5045d475a221e64ce755c478c2e10270d9 The package wifzap was found to contain malicious code. Source: ghsa-malware 1e5ec30d2613d271e1254cf809673eeac52f74766ce48c5e8c59f291e2c37b9f Any...
Malicious code in wwwt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00200d502997800295ce4f4ca7fe74962921193042bdddb47c91ef1bc817f61f The package wwwt was found to contain malicious code. Source: ghsa-malware 7076a3b538d3f3d8e1ae114139247fbcd223995fa82f1e63da64c9dc56dc8eb8 Any...
Malicious code in hiqomu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f1b14ad8ceaca23c5a536740bb79e0425805fb3df3bd23448dd6cee7af377ad The package hiqomu was found to contain malicious code. Source: ghsa-malware 0bd082bac5a58a31b60a13d745e6ec55d8e49b1e4d5d17c9f3711f28e611f0de Any...
Malicious code in syqara (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62fd7bca2ef5e78bc040138dfaac5d1c63a4efb820747b58406db43b6965a681 The package syqara was found to contain malicious code. Source: ghsa-malware 247c2c1d35e2e74ea2a025de37858894366c24053f4ff7517f2204ded2b20344 Any...
Malicious code in @nestor_hexom/garfield1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5e97b74c49ae069dbe34f9d8305d62eed7e381a2ee48bfe60938f1b90b3ce7db The package @nestorhexom/garfield1 was found to contain malicious code. Source: ghsa-malware...
Malicious code in 1kzr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1191bf170b21e0c9c0b1904f808522aa27e23736bb05c9c16332fd1a97e52332 The package 1kzr was found to contain malicious code. Source: ghsa-malware 715d44ba7af24784970425367d9e909f00a7b64031c3004b2fe93628232ab95c Any...
Malicious code in fbfu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd19f863aafa8b0d6a355e500577066f9ec36e1cc34262820c743be8ca289b4f The package fbfu was found to contain malicious code. Source: ghsa-malware 98bf9b443e26a63838946f3f4d3e5eafbd1da50efbb104378cea19e41ca78a7b Any...
Malicious code in kdb1-demo-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a67f080ec14c4f32313e33736b6b67e59accae55e5e2c388613df54d5b5c85d The package kdb1-demo-v2 was found to contain malicious code. Source: ghsa-malware c1a20b2217012bae0720ec06b437e454ea9f37100cf6bbec5477a5460ff53424 A...
Malicious code in syntax-class-properties (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf72c51c69dcb71762b580a0299d8e6c413cc2f20b0f9133034a98d43ce4151a The package syntax-class-properties was found to contain malicious code. Source: ghsa-malware...
Malicious code in const-enum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a75bfbf64070500e046f70ab9f4422cd37764182dfa1c2d841bdbff803b4e24 The package const-enum was found to contain malicious code. Source: ghsa-malware b9e5e7ad6ed97cfa1d1a71c51090aa5350d5166494a11fa6e6c9bbdad50dfc28 Any...
Malicious code in transform-decorators-legacy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 40378c47c2f0fa31a922a290a6ec2a2ea207ca9531f35ff004ee5b7a451e647b The package transform-decorators-legacy was found to contain malicious code. Source: ghsa-malware...
Malicious code in sort-imports-es6-autofix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20061f2672fcbe82b13ab8e09c629d93991ef45200bb30c7bf9a1dc78cbb4230 The package sort-imports-es6-autofix was found to contain malicious code. Source: ghsa-malware...
Malicious code in openblox-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f413a269bb13d7fc0f06d193b4b314762c1418948658dbcce7b416b6cc4e3d4 The package openblox-ts was found to contain malicious code. Source: ghsa-malware 60eca5ca78ef4e2c970e29512a0387609b154359d54bbc1a73473275777615c5 An...
Malicious code in eslint-plugin-supertest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69e51e22e6032e74b136ec2615b38bd5801cca8f5a4ef8a09747a442b656ec17 The package eslint-plugin-supertest was found to contain malicious code. Source: ghsa-malware...
Malicious code in redis-cookie-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 509b8c9645600775859de8538bbca62aac7f273789f1b43a370c814e2a061acc The package redis-cookie-ts was found to contain malicious code. Source: ghsa-malware c3c52170c4adfaeed7862716007e61fcaa3cfc702c729b6487746c1f3184f3e...
Malicious code in py-publish-test-0126 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 993085ca23a6a729d332eade4d58778a42c1d19b18237ab4b3c3a6bacf9fd126 Dependency confusion demonstration package with reporting through a decorator function --- Category: PROBABLYPENTEST - Packages looking like typical pentest...
Malicious code in testingpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 577f9c1cdb7d3ef0e010cc9e292142a11f3a84a9f1ed42f238a920e7e9617b35 Package clones a legitimate library and adds a hidden code that downloads a malicious script. The script then downloads an archive with malicious executable in...
Malicious code in robustinfer (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2fd89ce9f166281f91029df8dc7595d23503a595a4baba85f1702ccf0b4e2b11 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in pycolorom (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6babcee81c12759b66be4c0a8ba33c3f0272b052a47fda31227f4a6087ba8e5b The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...
Malicious code in elastic-docs-v3-utilities (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc3812db2733b6d6bfaba2e5b7b08065e1b07291a2a58a6dfa589b31added3e6 The package elastic-docs-v3-utilities was found to contain malicious code. Source: ghsa-malware...
Malicious code in evm-gateway-contracts-private (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4d7fcec6a0025a21ed0b14bdd643dc22965e7c3ccd6dee0bfa6bf3285b97aac The package evm-gateway-contracts-private was found to contain malicious code. Source: ghsa-malware...
Malicious code in code-review-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8200b341d8a881e6587e455f14f0c741d36c9fd0797d02812fa84bda028571a9 The package code-review-frontend was found to contain malicious code. Source: ghsa-malware...
Malicious code in x-clients-features (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 419d018f4db7282c5ea456563704c47d16246b1836a54f60696da59cb05cad04 The package x-clients-features was found to contain malicious code. Source: ghsa-malware...
Malicious code in electra-web-player (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90e20a5f518415d7ac86fad709a8ea6499445e427dab71949d06f62ace2dded The package electra-web-player was found to contain malicious code. Source: ghsa-malware...
Malicious code in electra-web-player-event (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45f583354472166aa4f724b9fde7ec74f8d56151edda6123bceaa5ac3560dab2 The package electra-web-player-event was found to contain malicious code. Source: ghsa-malware...
Malicious code in shopify-perf-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b8ab5bcfbfadc319f33cd1364bdbef1f7517fe3c502f9617bc77391014296a2 The package shopify-perf-kit was found to contain malicious code. Source: ghsa-malware b815f7df6ccc90c9082b80e772505706c55a58e7e187d18b01ff56e6524e57...
Malicious code in importmap-polyfil (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2d874c3ab0f1a1f131dca5c54020df385d3d3a2d8a58490de33ab3ebe3cf797 The package importmap-polyfil was found to contain malicious code. Source: ghsa-malware...
Malicious code in okta-loginpage-render (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48116f31c0b827072f94f6157837d2fcb3be3c6a9985584328216403280bd6bb The package okta-loginpage-render was found to contain malicious code. Source: ghsa-malware...
Malicious code in okta-auth-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0d2189b5df6091ef38c2619c0ed24b8814459b769da6b646901bb0d1987a440 The package okta-auth-js was found to contain malicious code. Source: ghsa-malware 65d7548ce9f766315a32892d8f9588740b8fab7cc50443598ea65e8e0ce9b2ab A...
Malicious code in okta-signin-widget (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1968f15d4faab74927023ad015e009d98087c120d8cb31b4a754faff297219b7 The package okta-signin-widget was found to contain malicious code. Source: ghsa-malware...
Malicious code in matic-transfer-consumer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2bf4eeb30140d673f8136ab4039e9f3bcc3f3b7d7482e96260a2806bf890eef The package matic-transfer-consumer was found to contain malicious code. Source: ghsa-malware...
Malicious code in polymarket-clob (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e650fcd9e5cec151122c4e59ee9f829a9f8f3afbc998be35354879cd24f5d8bf The package polymarket-clob was found to contain malicious code. Source: ghsa-malware c6f2692198b832546ebc0a47e287ea8e976cbbacae0f1963545cb4610ddd08b...
Malicious code in ethos2.0 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a012a962472733bf307c16dd1dfe1806727190273d53ac57bf4b524a26d34c96 The package ethos2.0 was found to contain malicious code. Source: ghsa-malware b646ddc4b3047452eaaf5304b21effbc2f0dd9800fd136ebfb4d33936f3bd8e6 Any...
Malicious code in bignumber.js-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92c6e02327f14620207af4a5e1925c400b63593f1200b4741e6da6fbed98324b The package bignumber.js-new was found to contain malicious code. Source: ghsa-malware 28010a58702c96fe7985f5d14aa8012e5f51e93f658c9de605cbd3e7437e18...