63 matches found
CVE-2026-23686
Due to a CRLF Injection vulnerability in SAP NetWeaver Application Server Java, an authenticated attacker with administrative access could submit specially crafted content to the application. If processed by the application, this content enables injection of untrusted entries into generated...
CVE-2024-41720
Incorrect permission assignment for critical resource issue exists in ZWX-2000CSW2-HN firmware versions prior to Ver.0.3.15, which may allow a network-adjacent authenticated attacker to alter the configuration of the device...
Malicious code in async-lynx-lithosphere-telesto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43ec24e13dc5676cd39326afe618afe0b9e4435ea88c7c601c8b2053d26a6c81 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in robotics-auriga-eclipse-parcel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45c8603622ee8e5a543e52a8e1616d015299b855bbd4ffd91c72063efc39f558 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in teate-thy-sonic-vauk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e940d781827ae6bbc3987c11bb1872d57ed96ebf26442c29241ef7ae464d1fcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in buis-masi-maffmasdaf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 430b3ab53ec8ffe1c7917a58e85bd481744b31ec7944a5b442dbedad27e73871 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in makan-aiga-ifuafu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31de54e1009940be29d3cb6c98b08936b426a899df6eaa370876c9a805b3aacd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-150226 Malicious code in @mipta1/sdfaa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06d0692b2f2a2b309add2be60b1bb475327fe792e5ddaeecb0155af2643a7250 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in aji-18 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d16107341bfc5656c1cfa808328a74267edf7dca8db3a69daecaeb187194436 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tania-gorengan28-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1c96f5753d88aec337ff4d47093a7591e09c75ef8825115b2d76a7bc55499be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in zain-gaplek40-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 226ed213fe8a3102e2cbcfa3824224bee5776fcf886ba0aadc0f930ea9e305e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-130019 Malicious code in sari-brongkos73-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0bae65c66f97f0c4a2ba607a861499077f0a13c807113031c49843ecdc10c699 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in davis-teadev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 242bff958ae6015d623d8815bdd505e3dddffbf6305d125bd341819615202726 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-78591 Malicious code in hadi-kue92-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 770a4b8b3ab555a08c8a6c0894a51d97b99529494731b9283da4ceeda88c7506 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-34144
An low privileged remote attacker with an account for the Web-based management can change the system configuration to perform a command injection as root, resulting in a total loss of confidentiality, availability and integrity due to improper control of generation of code 'Code Injection'...
EUVD-2021-10310
Malware in sbrugna...
EUVD-2023-49885
Malicious code in bioql PyPI...
EUVD-2024-46262
Malicious code in bioql PyPI...
EUVD-2024-54296
Malicious code in bioql PyPI...
EUVD-2024-54541
Malicious code in bioql PyPI...