MAL-2024-4949

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/colordiscord2/MAL-2024-4949.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-4949

Published

2024-06-25T13:33:52Z

Modified

2024-10-24T01:01:58Z

Summary

Malicious code in colordiscord2 (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "sha256": "db689eda89d3d1500b1fbf4f46246fbf33ea21932bfd7a043dc2631d4e3c8567",
            "modified_time": "2024-06-25T13:33:52Z",
            "source": "reversing-labs",
            "import_time": "2024-06-28T02:48:36.918406304Z",
            "versions": [
                "0.0.1"
            ],
            "id": "RLMA-2024-03729"
        },
        {
            "sha256": "94ffdb9f6e60eca965c50894ebe8df0ddb39c0e5a066231165dce53a7b569f6f",
            "modified_time": "2024-10-16T14:38:29Z",
            "source": "reversing-labs",
            "import_time": "2024-10-24T00:58:58.663350386Z",
            "id": "RLUA-2024-08021"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / colordiscord2

Package

Name: colordiscord2; View open source insights on deps.dev
Purl: pkg:pypi/colordiscord2

Affected ranges

Affected versions

0.*

0.0.1

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/colordiscord2/MAL-2024-4949.json"