MAL-2025-192726
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/cms_comp_popup/MAL-2025-192726.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2025-192726
- Published
- 2025-12-23T08:02:49Z
- Modified
- 2025-12-24T01:13:06.566029Z
- Summary
- Malicious code in cms_comp_popup (npm)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: amazon-inspector (29b3cb2a1f01d574c425ee6c15a03a0f3a25a3f95c149699459964c6fbf83c23)
The package cmscomppopup was found to contain malicious code.
- Database specific
{ "malicious-packages-origins": [ { "sha256": "e01d0995150fd5eab2800e4260d9aeb135c8e7e3160e2e0df7308fd42ca2b63a", "source": "reversing-labs", "modified_time": "2025-12-23T08:02:49Z", "id": "RLMA-2025-06098", "versions": [ "999.0.0" ], "import_time": "2025-12-23T16:08:09.342452688Z" }, { "sha256": "29b3cb2a1f01d574c425ee6c15a03a0f3a25a3f95c149699459964c6fbf83c23", "source": "amazon-inspector", "modified_time": "2025-12-24T00:41:11Z", "versions": [ "999.0.0" ], "import_time": "2025-12-24T00:51:42.372327671Z" } ] }- References
-
- Credits
-
-
- Amazon Inspector - FINDER
-
- ReversingLabs - FINDER
-
Affected packages
npm / cms_comp_popup
Package
- Name
- cms_comp_popup
- View open source insights on deps.dev
- Purl
- pkg:npm/cms_comp_popup