Malicious code in liobc-ug-afayafuyacauicig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c198a4da33bf993c0a9849903a6c1a7d42b13983b598d3404c4f9624f58d4344 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-154180 Malicious code in dajouka-scelas-rac (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector baff9275ec9d51477c7a880e0a5c81ee614c8beab94c3740b3ebe620608eb5e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-168581 Malicious code in tealove-nokire6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 975c99cf7c8a1668d5ede1138b623409e82606f2e5942d30b5820d35d4131453 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hercules-shelljs-xerxes-janus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fa8de715e5b1534b7322f06bf1f7d591feb8f069c023490ff6e1d16a652a70c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in joko-jamblang61-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b5a5f91e2d81ca3ee210dc18e06c158bc7819f907d81fb4cbb1305c5157fe4b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nina-pisang88-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83d9e27f1b0f005175ae6c5a4eda5bebc3621219cfe487d070415d40d45e67d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in putra-gorengan43-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a3852576de5eeae1e2404e72a059bcc76440f7555846c9580b6fbece748865c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kiki-nasi41-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a5d054d066621c1347be8f735eebff348b8c3ad999eadf531ed781eab1501f2a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-64673 Malicious code in okta-lumpur31-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 812b6e4caf7760ce8aec3e117058ed54fe0d1f01c45c7ee7f94b2e4bb922d16a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2023-36851

Malicious code in bioql PyPI...

PT-2024-27513 · Ricoh · Ricoh Streamline Nx Pc Client

Name of the Vulnerable Software and Affected Versions: Ricoh Streamline NX PC Client affected versions not specified Description: A use of potentially dangerous function issue exists in the software. If this issue is exploited, files on the PC where the product is installed may be altered...

CVE-2022-46660

An unauthorized user could alter or write files with full control over the path and content of the file...

CVE-2022-46660

An unauthorized user could alter or write files with full control over the path and content of the file...

Multiple vulnerabilities in Cybozu Garoon

Overview Cybozu Garoon provided by Cybozu, Inc. contains multiple vulnerabilities listed below. CyVDB-2909 Operation restriction bypass in multiple applications CWE-285 - CVE-2022-30602 CyVDB-3042 Information disclosure in multiple applications CWE-200 - CVE-2022-29512 CyVDB-3111 Improper input...

Cybozu Garoon 授权问题漏洞

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. An authorization issue vulnerability exists in Cybozu Garoon. The vulnerability stems from improper privilege...

CVE-2018-18331

A Trend Micro OfficeScan XG weak file permissions vulnerability on a particular folder for a particular group may allow an attacker to alter the files, which could lead to other exploits on vulnerable installations...

CVE-2018-14791

Emerson DeltaV DCS versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, R5 may allow non-administrative users to change executable and library files on the affected products...