143 matches found
SUSE SLES15 Security Update : java-1_8_0-ibm (SUSE-SU-2026:2110-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2110-1 advisory. This update for java-180-ibm fixes the following issues - CVE-2026-22007: APIs in the specified component can lead to an unauthoriz...
CVE-2026-34951 Reflected XSS in footer.php in Workbench Allows Attackers to Hijack Authenticated Sessions
Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.com APIs. Prior to 65.0.0, Workbench contains a reflected cross-site scripting vulnerability via the footerScripts parameter, which does not sanitize user-supplied input...
Malicious code in intan-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc082ad2fee625342e444c3a86f3cdeced3923ba9c7376bb1847c96c18da9d18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cinta-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f967ebd8bcec319e739fd80bf26abc76a74972a746f842900a964a0e39ac6b04 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-153717 Malicious code in billa-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f27bd64df46c8942759e41b9d3c5691752db56209deebe423c89dc05d374252 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-155673 Malicious code in hariyono-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0a2ef191fd6648c465768a9f9a48aed86e1e02c5b0fabeb64f3fc4b600b20e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in aril-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba0c82e766486c61c9c34d296f86393771d761920e8d864fdac2b2bf59e89e0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-152507 Malicious code in alvira-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9096923524cb911a6e69b0ec54fb2876b41651fc61480b1378ad238ff596468 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in alvino-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd32fdfe17c6eca18e4f2e28a72b42f56d7819b517c26791643b1054585f8868 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kentung-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3fb1a975bf9dccc15939d626a4564428f4138a871976680ea106c50725659d70 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-164939 Malicious code in rita-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbc1f7fe8b4b82e41e5bc7a0cc7e9ba7e6f3d82e00e1d0bf17beebbd6f2fdad1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hariyono-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0a2ef191fd6648c465768a9f9a48aed86e1e02c5b0fabeb64f3fc4b600b20e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120016
Malicious code in nethalibutazure-65 npm...
EUVD-2025-74749
Malicious code in determinedearwigtomato-65 npm...
Malicious code in final_grouse_beige-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84317f00281b604fd27a41c60a1e3453221af7d6a0d1c4c2318fd83e6ab09ff7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-112249 Malicious code in regulatory_albatross_green-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 30e86f69ea20a944bac2cf53ed2dc2aa671b99af31681e151648e62ef0134ff5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-112175 Malicious code in partial_mule_harlequin-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca353e7f1dbdd908f1e46488fdd0316315f4f4c5c00e1980280522cbb7d8de81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-111830 Malicious code in dusty_buzzard_rose-65 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b940cde5e2441ec7a9602d30afed8475d586e99d23ae1ad7cba5391a13777458 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-74722
Malicious code in dustybuzzardrose-65 npm...
EUVD-2025-74640
Malicious code in flattunafuchsia-65 npm...