{"id":"MAL-2024-8727","summary":"Malicious code in esdjiw (npm)","details":"The package contains obfuscated code to load content from a suspicious external domain in the user's browser\n\n---\n_-= Per source details. Do not edit below this line.=-_\n","modified":"2024-12-09T14:39:21Z","published":"2024-09-03T15:27:54Z","database_specific":{"malicious-packages-origins":[{"sha256":"72cc0441ab17b6f8a923ca270f7a731a201ef496ea7045c159e3878a86b95fe9","source":"reversing-labs","versions":["11.37.2"],"import_time":"2024-12-09T14:38:21.481256937Z","modified_time":"2024-12-09T00:32:23Z","id":"RLMA-2024-10544"}]},"affected":[{"package":{"name":"esdjiw","ecosystem":"npm","purl":"pkg:npm/esdjiw"},"versions":["11.37.2"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/esdjiw/MAL-2024-8727.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"},{"name":"Stacklok: trustypkg.dev","contact":["https://discord.com/invite/RkzVuTp3WK"],"type":"FINDER"}]}