0.0.1-security
2 years ago
2 years ago
Known vulnerabilities in the qtt package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
qtt is a malicious package. This package contains a malicious code that infects Linux hosts with cryptominers by downloading a malicious Bash script from the attacker server via a Bitly URL. How to fix Malicious Package? Avoid using all malicious instances of the | * |