capacitor-plugin-purchase

MAL-2025-190836

npmmalware11/24/2025
Description

Malicious code in capacitor-plugin-purchase (npm)

Indicators of Compromise
SHA256 Hashes (3)
06fd1c7e67fe28433edb6d438a8a9e066f8173d7190d550f5f5c858981b116ad
54ff438ebca922d9d6cb6a8a96700003065dbfc0ed65a5984edec2d5f5d37751
7364d689722b7930a738ffaf57d46680370a41047a4035a3752398478001ddb3
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-cm39-p5ww-5hfc
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001