billing-paywidget

MAL-2026-2638

npmmalware4/14/2026

Description

Malicious code in billing-paywidget (npm)

Indicators of Compromise

SHA256 Hashes (2)

9fb345d363e1ea68a00cab458747bd944904e49e476abc0480a5d797f16301d6

106abcc82e6829ef210ead1f7cee43d8804691967d0049649acd2ba53e5dbfa1

References (1)

Details

Ecosystemnpm

Attack Typemalware

Published4/14/2026

Affected Versions

Aliases

GHSA-3cww-22qr-fgwc

Quick Actions

Ready for Agentic Automated Testing?