rrgod@0.0.1-security vulnerabilities

security holding package

latest version

0.0.1-security

first published

6 years ago

latest version published

6 years ago

View rrgod package health on Snyk Advisor (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the rrgod package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
C Malicious Package rrgod is a Malicious Package. This package downloads and executes a python script from http://static.ricterz.me via preinstall, postinstall and install scripts. That script is trying to fetch and execute another script from ricterz.me:8889 which is currently down. The python script from http://static.ricterz.me is saved in `shell.py`. How to fix Malicious Package? Avoid using `rrgod` altogether.	*

Malicious Package

rrgod is a Malicious Package.

This package downloads and executes a python script from http://static.ricterz.me via preinstall, postinstall and install scripts. That script is trying to fetch and execute another script from ricterz.me:8889 which is currently down. The python script from http://static.ricterz.me is saved in shell.py.

How to fix Malicious Package?

Avoid using rrgod altogether.

Go back to all versions of this package