VDB
MAL-2026-2244
MAL-2026-2244
PUBLISHED
Malicious code in fluxhttp (PyPI)
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| PyPI | fluxhttp | 1a1, 1.0.1, 1.0.2 |
Timeline
- Mar 26, 2026 CVE Published
- Apr 8, 2026 CVE Updated
References
- https://bad-packages.kam193.eu/pypi/package/fluxhttp url
- https://www.virustotal.com/gui/file/9a541dffb7fc18dc71dbc8523ec6c3a71c224ffeb518ae3a8d7d16377aebee58/detection evidence
- https://www.virustotal.com/gui/file/bb2a89001410fa5a11dea6477d4f5573130261badc67fe952cfad1174c2f0edd evidence
- https://socket.dev/blog/contagious-interview-campaign-spreads-across-5-ecosystems url