Homepage
About Snyk

fallguys@0.0.1-security vulnerabilities

security holding package

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the fallguys package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • C
Malicious Package

fallguys is a malicious package. It contains malicious code that attempts to read local sensitive files and exfiltrate information through a Discord webhook. The code attempted to access the following paths available on Windows systems:

  • /AppData/Local/Google/Chrome/User Data/Default/Local Storage/leveldb
  • /AppData/Roaming/Opera Software/Opera Stable/Local Storage/leveldb
  • /AppData/Local/Yandex/YandexBrowser/User Data/Default/Local Storage/leveldb
  • /AppData/Local/BraveSoftware/Brave-Browser/User Data/Default/Local Storage/leveldb
  • /AppData/Roaming/discord/Local Storage/leveldb

How to fix Malicious Package?

Avoid using all malicious instances of the fallguys package.

*
Go back to all versions of this package