{"schema_version":"1.7.5","id":"MAL-2025-192466","published":"2025-12-11T01:47:51Z","modified":"2026-03-19T12:48:50.253896Z","summary":"Malicious code in tnaxmlparserctf (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (f5028d4ab741d3e7b9c3cb92e1275a1d29d1e6cd8157590f7871d02b8b2a5d23)\nThe package tnaxmlparserctf was found to contain malicious code.\n","affected":[{"package":{"name":"tnaxmlparserctf","ecosystem":"npm","purl":"pkg:npm/tnaxmlparserctf"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"versions":["1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/tnaxmlparserctf/MAL-2025-192466.json"}}],"database_specific":{"malicious-packages-origins":[{"import_time":"2025-12-11T02:41:23.904853732Z","modified_time":"2025-12-11T01:47:51Z","ranges":[{"events":[{"introduced":"0"}],"type":"SEMVER"}],"sha256":"f5028d4ab741d3e7b9c3cb92e1275a1d29d1e6cd8157590f7871d02b8b2a5d23","source":"amazon-inspector"},{"id":"RLMA-2026-01622","import_time":"2026-03-19T12:19:13.882736072Z","modified_time":"2026-03-18T13:13:08Z","sha256":"095c59252d8f17e88cc2f286a690f797ba8c04111a2d70ccf058dbc384b3f0c8","source":"reversing-labs","versions":["1.0.0"]}]},"credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}