Malicious Package Affecting regenraotr package, versions *
Threat Intelligence
Exploit Maturity
Mature
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-JS-REGENRAOTR-450957
- published 25 Jun 2019
- disclosed 24 Jun 2018
- credit Clement Ng
How to fix?
Avoid using regenraotr
altogether.
Overview
regenraotr is a Malicious package.
Affected versions of this package are vulnerable to Malicious Package. All versions of regenrator
are considered malicious. The package is malware designed to take advantage of users making a mistake when typing the name of a module to install. When executed, the package calls home to a Command and Control server to execute arbitrary commands.
CVSS Scores
version 3.1