225920 matches found
Malicious code in @vietmoney/react-big-calendar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b38aebebed4a38e2464d8abb76fbda4a16d4cf03b372124ec3d069c63f6e79f2 The package @vietmoney/react-big-calendar was found to contain malicious code. Source: ghsa-malware...
Malicious code in @vietmoney/react-native-true-id (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96077b211aad35cef450b272ea27d6ef00276ecef718afa31ecb225b43d0b60e The package @vietmoney/react-native-true-id was found to contain malicious code. Source: ghsa-malware...
Malicious code in brolool4141412 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 26b5ad1d170ede931c108f8a9d4342347b2983ae9fc5330b25ddb1dcc4132eb7 Package tests possible malicious actions during installation by starting notepad. There is no other functionality, it's clearly a test of possible malicious...
Malicious code in broooxddd1414 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 96d927b6bf59d0d5aeea78de6b99df11c32ad0e467da980917a16703d5a1c0d1 Package tests possible malicious actions during installation by starting notepad. There is no other functionality, it's clearly a test of possible malicious...
Malicious code in weorewfoi2393 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 00296490bb9bcec28af256a76790f8c5f96dd45d4184ac6617bbdffad3e674a3 Package tests possible malicious actions during installation by starting notepad. There is no other functionality, it's clearly a test of possible malicious...
Malicious code in pyrogrem (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 42a10da9545ede038913b53b3619d36a94708a854536263f6a97c5d4d30a9b65 The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...
Malicious code in umap (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f6dd42f96f818641d94fd4a2085dfd1071b6ce3fa44a3f05b785245ab4d1c886 Simple dependency confusion test. Versions before 0.1.2 do not perform any active action. The original umap package existed in the past, but was removed by the...
Malicious code in nbugs-video (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98b87ac16f6f77129a82c79e3e8e1e7a2befb3846cb6824c045fe5203c3f63a3 The package nbugs-video was found to contain malicious code. Source: ghsa-malware 25902a3f4bd357713019e6b42a7e4630aafad4a9a428c91dd406d7dfa883a477 An...
Malicious code in npm-xmt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcf1d57a75f915c7959a484b36e4b23c72425b90256a860d8d52e058599af296 The package npm-xmt was found to contain malicious code. Source: ghsa-malware 66603f4e5606fa61cf79355902ed86e376156cd0b163be93e0b471b87180e0b2 Any...
Malicious code in chai-promised-chains (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0956a62fcaae7fb3ed4d8d30007bc025850ba1f4915e2a816c0602f6d24f2135 The package chai-promised-chains was found to contain malicious code. Source: ghsa-malware...
Malicious code in error-fallback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4bcddff3dd9b13e5fc8e37afd8432e9485d1204cb5cd6a546a46e4580371f929 The package error-fallback was found to contain malicious code. Source: ghsa-malware b9c747aad11a6b98fa9f2fb07cb9410f6bc4e51390f358f1ff5d546c14b08134...
Malicious code in @ptest2535/l_woker_mal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4196b81679a34023da03dc65cd5831c81e6c9d66d1a3617113d28a85b23c83c The package @ptest2535/lwokermal was found to contain malicious code. Source: ghsa-malware...
Malicious code in @ptest2535/artifactory-demo-ptest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 179d121743e4ae61b32780c6a0ea72f57b23796b21513e57f998da725dd49318 The package @ptest2535/artifactory-demo-ptest was found to contain malicious code. Source: ghsa-malware...
Malicious code in @ptest2535/test_package (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b13d530a9ae65d0d85399d64cd8b0842f91f121a59d8e6386d63a730746d23d The package @ptest2535/testpackage was found to contain malicious code. Source: ghsa-malware...
Malicious code in @ptest2535/ui-core_mal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7628a65ea5a9b366c3df0045c4c0a1c8b44ec278dc10792f971ed266fe08ce5a The package @ptest2535/ui-coremal was found to contain malicious code. Source: ghsa-malware...
Malicious code in yellowdiscordlookup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a458f47de1b6a86fa1139c7fa7def7c0035d181b6db01d635374e0e6058893a9 The package yellowdiscordlookup was found to contain malicious code. Source: ghsa-malware...
Malicious code in bigmathex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2d6482202334e84fd3842eee620f23e8bc2b6fbcf1588bbb27c94176cfd0999 The package bigmathex was found to contain malicious code. Source: ghsa-malware 78d52a55be2e3f5049e8f23cfc7ba78e91116de3cf84b914b0b858d07b2e1ec8 Any...
Malicious code in portal-lise (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd0c023f6f7e2ba4df069103ad42d8cb03575410033a50f5887ec1d0fbe94205 The package portal-lise was found to contain malicious code. Source: ghsa-malware 6d0ea4511808b283817242b827687f9a2fb37a0a7f17db46db1f4acbd6ba0de8 An...
Malicious code in awsmcc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c2a7b489d8af5f0c06c47b310c02a653edcfa6b8e32f0240de8b9b458a25ca20 The package awsmcc was found to contain malicious code. Source: ghsa-malware df5248366fb710499bb8e8e68e608e462aae6607213972d97afe020f85397b0e Any...
Malicious code in react-dom-bindings (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3c021e2818d17945e50bcb89d19d34a8750ca14078220d113dc8b4c5f0c1392 The package react-dom-bindings was found to contain malicious code. Source: ghsa-malware...
Malicious code in rt-interactive-card-collection (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9858817ec5f5e5af9db5f5033c3626e4214faa07e1169e950573bbca309a975e The package rt-interactive-card-collection was found to contain malicious code. Source: ghsa-malware...
Malicious code in rt-text-media-collection (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 761afaf4df6aa1b7badedc5757ada134cb041af11dad1257171abae2be3a4589 The package rt-text-media-collection was found to contain malicious code. Source: ghsa-malware...
Malicious code in shop-minis-docs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65062ebee33867314103794ac38067ced1fbbccad5a3f7002f8eda1a6c048bd4 The package shop-minis-docs was found to contain malicious code. Source: ghsa-malware 6edcc8bb2a5c12ec37244f9786010f29a9c7f7131c7b5b2d34d5dfbb9bc0365...
Malicious code in shopify-app-react-router (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d58b68abe183faeee5b24e4b524d982d1c78881c8d0c48dd847411bf8fc087e6 The package shopify-app-react-router was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-devtools-shared (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd222e067bee8f9d675a2d56e5e8eb63a00a76038df2d777aae7f5659bf3b0c6 The package react-devtools-shared was found to contain malicious code. Source: ghsa-malware...
Malicious code in cdd-plugin-for-datawarrior (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ab7ca6ae4de6f4b1898f1507f69f89459ab40983852692e28a6b599f9e2318f The package cdd-plugin-for-datawarrior was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-devtools-extensions (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c07bb5eb2fa7f96705fece940955413b3976968c5a79e13bdd85ce00ec485e4 The package react-devtools-extensions was found to contain malicious code. Source: ghsa-malware...
Malicious code in eb-csr (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bde17b1e5e6a9e071d031714e31335d93e040635afe32c1cb655b8892e8e2d3b The package eb-csr was found to contain malicious code. Source: ghsa-malware 633a3693267851fd0c8eeee4cfc971fd7009c5c128d6a9ac0392d6ded3a8614f Any...
Malicious code in @peter_wilson12091/internal-json-test-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18430304f650bf998b2421e45c0b8b01fce58239d3dd6fbe9de753128aac9a4d The package @peterwilson12091/internal-json-test-parser was found to contain malicious code. Source: ghsa-malware...
Malicious code in express-js-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e922c32d1b163c8938985f7665f539243b9be99316491150e61476d30cf0ce68 The package express-js-web was found to contain malicious code. Source: ghsa-malware 50f874487616a31800182c5b87aec47559f7136d5ed3a84355446b795a3137d7...
Malicious code in tailwindcss-typography-style (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f2e4636e4f08bc04591afc5b27fce2e03dea82a9883b2dc8092a6f23fa6f55d The package tailwindcss-typography-style was found to contain malicious code. Source: ghsa-malware...
Malicious code in @bugdtest/test1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 566749f80686d2357340c2b5168e4bcfa5325ef16ac486be884d76778a25b5c3 The package @bugdtest/test1 was found to contain malicious code. Source: ghsa-malware d0f199c82abe08a5f5512596124dac3897cfaf75367ba53fb532f76e23474cb...
Malicious code in pepsico-ds (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84e06cbb0ba3e6ef5f40b90871131e6748e02e19b05f35af40904f6dc1273ade The package pepsico-ds was found to contain malicious code. Source: ghsa-malware c7a159652f3db642511d7ec78c875f15efe5cc2a53d36ca933aea2e210d1f5b8 Any...
Malicious code in rippling-cli (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bac12bb851f49ac4801addcf6964c854abe90430140d3e75e4eefcd4c7cf1bf0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in awsutil (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 86d4af9fafbcfb6e3789a38b426c744e4ac67da10eb1fa225be3a715189fb1c2 Dependency confusion research package with advanced module-mocking --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also...
Malicious code in kcheck (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 660a47461992421159d386fb5e8ce14c3c794e8059b276d4de539ca2235d8780 The package kcheck was found to contain malicious code. Source: ghsa-malware 9666f7f55b90b84ee1e458016ed3eb475f26465bcf2d4fbe690a142c3a53e311 Any...
Malicious code in intl-tel-input-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffcf244ee511453d176367146c8b6b5ee74d18e3037210dd63d19712c8647991 The package intl-tel-input-utils was found to contain malicious code. Source: ghsa-malware...
Malicious code in smtmlib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e871336d0effe99cb62efeda3a287186e75c1bd4ca5770efd81718db8ababe4e Malicious copy of a standard library module that during class initialization downloads and executes remote code and after that attempts to cover its tracks by...
Malicious code in crypto-trade-analyzer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af98bce52816ed53d3c0a6a25f6b5cbc5c81db49e335febee3d3c3c14924de7f The package crypto-trade-analyzer was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in cryptozip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 157ea6b1f1c3d4ed5564c494db770e9156f3e269f12cefec6e4270085a762f26 During initialization of the archive-support class, the package starts code from another file and downloads multi-stage malware --- Category: MALICIOUS - The...
Malicious code in eslint-config-pexip-engage (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f2ae2981daf16023f28b58d952a770dc6ec7060333721b5eeca90a6b05f6d56 The package eslint-config-pexip-engage was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in api-umbrella-admin-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f5afbcc650f7845d47544c5033aba92c5a2ab80d2e0d27e99437ef31cc6c249 The package api-umbrella-admin-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in aiogram-types-v3 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f6ba04e944f1dfda1aaa2d571fa79cd8ce4074a106bae228e582473226810baf During installation or importing the module, the package starts a reverse shell to hardcoded locatiom --- Category: MALICIOUS - The campaign has clearly...
Malicious code in eslint-config-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e71714baca3a4619a8482f00c00fbed0efcca855796a70e740d4f53a3f807003 The package eslint-config-sdk was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in ugc-kit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ffd0991cb1cc7098930838b404210022aa2667d78f2884417f449d85e90fb12 The package ugc-kit was found to contain malicious code. Source: ghsa-malware 4e44ecda4e96910709480e50046146e482992e36fb2e8429211e1f653376d123 Any...
Malicious code in ing-feat-malware-detection (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5339c05fd7459125a98a0503401e5eb8bca30c456d9a80f14485484df6256850 The package ing-feat-malware-detection was found to contain malicious code. Source: ghsa-malware...
Malicious code in ing-feat-ui-image (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14224c001e46452a2945aa0f8597214b5f82350c3aeddc53076f9759ce948e18 The package ing-feat-ui-image was found to contain malicious code. Source: ghsa-malware...
Malicious code in extrazip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f58777710463b043a0724ad1d7999807501b56667a10eced314fd036e9303fdf During initialization of the archive-support class, the package starts code from another file and downloads multi-stage malware --- Category: MALICIOUS - The...
Malicious code in crypo (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3a0850548e71807fb514fcd1943f55f7c3bd6408086ff7a495d7df628a083db9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in crpto (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8d63e95f77927edecca2696ce60ea5c069170b051adc651f425a42b2f27f384c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...