MAL-2026-1826

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/proleis-web-file-input/MAL-2026-1826.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-1826

Published

2026-03-18T13:04:57Z

Modified

2026-03-23T05:45:04.368741Z

Summary

Malicious code in proleis-web-file-input (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (245fa1a911f89e0a94db5dda7b80b9f2b64e0bbbbfeb9618b3e013f4da4f212c)

The package proleis-web-file-input was found to contain malicious code.

Database specific

{
    "malicious-packages-origins": [
        {
            "modified_time": "2026-03-18T13:04:57Z",
            "versions": [
                "10.0.0",
                "10.0.1",
                "10.1.0"
            ],
            "sha256": "b716793257c80a222e2e33022e1b30c5d29ea2b38ea4f334712fadf1e8dd193b",
            "id": "RLMA-2026-01512",
            "source": "reversing-labs",
            "import_time": "2026-03-19T12:19:07.50995674Z"
        },
        {
            "modified_time": "2026-03-23T05:11:41Z",
            "versions": [
                "10.0.0",
                "10.0.1",
                "10.1.0"
            ],
            "sha256": "245fa1a911f89e0a94db5dda7b80b9f2b64e0bbbbfeb9618b3e013f4da4f212c",
            "source": "amazon-inspector",
            "import_time": "2026-03-23T05:14:14.365247071Z"
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com
- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

npm / proleis-web-file-input

Package

Name: proleis-web-file-input; View open source insights on deps.dev
Purl: pkg:npm/proleis-web-file-input

Affected ranges

Affected versions

10.*

10.0.0

10.0.1

10.1.0

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/proleis-web-file-input/MAL-2026-1826.json"