VYPR

composer · Malicious package advisory

Malware

intercom/intercom-php

PKG-PKSA-gwt3-5dgf-97fx

Compromised tag of intercom-php published via GitHub

Details

**Severity:** Critical

**Affected versions:** =5.0.2

**Source:** [GitHub](https://github.com/advisories/GHSA-gr3r-crp5-qrrm)

**Remote ID:** GHSA-gr3r-crp5-qrrm

Compromised versions (1)

  • =5.0.2

Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.