MAL-2026-1825

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/proleis-web-app/MAL-2026-1825.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-1825

Published

2026-03-18T13:04:55Z

Modified

2026-03-23T05:45:05.531120Z

Summary

Malicious code in proleis-web-app (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (afd065de5d26ebde43c9fef2003ea3ffbc21bfa47120965cf1c6a893da876d33)

The package proleis-web-app was found to contain malicious code.

Database specific

{
    "malicious-packages-origins": [
        {
            "id": "RLMA-2026-01511",
            "import_time": "2026-03-19T12:19:07.407012052Z",
            "sha256": "0c43ece641f556c4e85afa45a6427022a305d0cbe2f0e6642f02777ea24d6223",
            "source": "reversing-labs",
            "modified_time": "2026-03-18T13:04:55Z",
            "versions": [
                "10.0.1",
                "10.1.0"
            ]
        },
        {
            "import_time": "2026-03-23T05:14:05.287832698Z",
            "sha256": "afd065de5d26ebde43c9fef2003ea3ffbc21bfa47120965cf1c6a893da876d33",
            "source": "amazon-inspector",
            "modified_time": "2026-03-23T05:11:41Z",
            "versions": [
                "10.0.1",
                "10.1.0"
            ]
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com
- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / proleis-web-app

Package

Name: proleis-web-app; View open source insights on deps.dev
Purl: pkg:npm/proleis-web-app

Affected ranges

Affected versions

10.*

10.0.1

10.1.0

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/proleis-web-app/MAL-2026-1825.json"