VDB
GCVE-110-OSM-2026-4260
GCVE-110-OSM-2026-4260
Advisory PublishedCVSS 8.8/10
[osmalyze-auto] Malicious package detected. Behaviors: obfuscated code.
[osmalyze-auto] Entrypoint: index.js (main: index.js)
Payload: index.js
Key findings:
- Whitespace-Padded Hidden Payload in index.js: "; ..."
- Obfuscation: function to array replacements in index.js
- Obfuscation Pattern: underscoreDollarVars in index.js: "_$_c266"
- Obfuscation Pattern: splitJoinChain in index.js: ".split(z).join(k).split(g).join("
- Brand New Package
IOCs:
- urls: http://juliangruber.com
- domains: juliangruber.com
- emails: julian@juliangruber.com, mail@juliangruber.com
- payloadFileHash: 817e4d96e570307541e123ee79854852842167b8e543d9577f82fc98c873cfec
Weaknesses (CWE)
CWE-506Embedded Malicious Code
Risk Scores
CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| unknown | btd-smart | 1.0.3 (affected) | — |
Browse GCVE Records
73,866 records in the GCVE database · Updated July 19, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.