npm package
discordi.js
pkg:npm/discordi.js
Malware
1 malicious version on record
One or more versions of this package have been flagged as containing malicious code. Audit any system that installed an affected version.
- MAL-2025-18484Malicious code in discordi.js (npm)Aug 14, 2025
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-16207 | Hig | 7.3 | <= 14.0.3 | — | Jun 7, 2018 | discordi.js is a malicious module based on the discord.js library that exfiltrates login tokens to pastebin. |
- affected <= 14.0.3
discordi.js is a malicious module based on the discord.js library that exfiltrates login tokens to pastebin.