MAL-2024-5474

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/pilloo/MAL-2024-5474.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2024-5474

Aliases

SNYK-PYTHON-PILLOO-6513446

Published

2024-06-25T13:38:07Z

Modified

2024-10-24T01:01:59Z

Summary

Malicious code in pilloo (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Database specific

{
    "malicious-packages-origins": [
        {
            "versions": [
                "1.0.0"
            ],
            "source": "reversing-labs",
            "import_time": "2024-06-28T02:49:38.660875851Z",
            "modified_time": "2024-06-25T13:38:07Z",
            "id": "RLMA-2024-04256",
            "sha256": "6e62d515a26be3267bd069a15acd539381606019c20980d17a65a1f70be18196"
        },
        {
            "source": "reversing-labs",
            "import_time": "2024-10-24T00:59:35.051867283Z",
            "modified_time": "2024-10-16T14:45:25Z",
            "id": "RLUA-2024-08684",
            "sha256": "1849edcc89571e1316501a6d0b68b7a99e9b8ec00437cc53c3d29999bf82e9e4"
        }
    ]
}

References

Credits

- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / pilloo

Package

Name: pilloo; View open source insights on deps.dev
Purl: pkg:pypi/pilloo

Affected ranges

Affected versions

1.*

1.0.0

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/pilloo/MAL-2024-5474.json"