database-mongoose-kit

MAL-2025-192398

npmmalware12/10/2025
Description

Malicious code in database-mongoose-kit (npm)

Indicators of Compromise
SHA256 Hashes (4)
ecb1986b2058803fb71f6f6d8d65ba8c9968035f820b2c9757486d4166921f02
df08b31cea7b04dc684cec25582ae2e1877edf126ed8b1963f77c87b4d93de08
dc457374fd1909229636edd0933f8b7cf836c367f6f4ffd57ad0016d5617e1c1
c9c238c1d3432219fa6c66e847ebb08d59eafda1213def48d3bd7fe33ba4fade
Details
Ecosystemnpm
Attack Typemalware
Published12/10/2025
Aliases
GHSA-3c76-cvvv-7wf5SNYK-JS-DATABASEMONGOOSEKIT-14287384
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001