// Data staging

Static pattern: dest-via-hostname-var

pattern: dest-via-hostname-var

Packages whose static analysis matched this pattern. See the per-package detail pages for the offending code excerpt.

3 packages flagged with this pattern (10 total publish events, collapsed by publisher+name). Newest first.

• AUTO-PUBLISHED/npm/6h ago

  stripe-internal-utils@1.0.0

  by dewifewi

  Full RCE PoC -osama

  → sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

  reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

  → Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.

  weekly

  —
• AUTO-PUBLISHED/npm/7h ago

  did-00916 versions·11.0.5→11.1.8

  by dewifewi

  xxx

  → sends totjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun

  reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

  → Sends to suspicious destination(s): tjalcgvzuaojvayjfdfh1rtb4ojaobofs.oast.fun.

  weekly
• AUTO-PUBLISHED/npm/10h ago

  collected-forms-embed-js3 versions·1.0.1→1.0.5

  by fwgewgewgewrhgw

  Full RCE PoC - Alex Birsan Style

  → sends towvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun

  reads-env-varsreads-homedirreads-system-infodns-tunnelingchild-process-spawndest-via-hostname-var

  → Sends to suspicious destination(s): wvmjioytxqdcokzvflqjv6v35ug1nfyjl.oast.fun.