rrgod@0.0.1-security vulnerabilities

security holding package

latest version

0.0.1-security

first published

5 years ago

latest version published

5 years ago

licenses detected

Unknown
>=0

View rrgod package health on Snyk Advisor (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the rrgod package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
C Malicious Package rrgod is a Malicious Package. This package downloads and executes a python script from http://static.ricterz.me via preinstall, postinstall and install scripts. That script is trying to fetch and execute another script from ricterz.me:8889 which is currently down. The python script from http://static.ricterz.me is saved in `shell.py`. How to fix Malicious Package? Avoid using `rrgod` altogether.	*

Malicious Package

rrgod is a Malicious Package.

This package downloads and executes a python script from http://static.ricterz.me via preinstall, postinstall and install scripts. That script is trying to fetch and execute another script from ricterz.me:8889 which is currently down. The python script from http://static.ricterz.me is saved in shell.py.

How to fix Malicious Package?

Avoid using rrgod altogether.

Go back to all versions of this package