10441 matches found
Malicious code in umi-sate44-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b98216a8116e14baa1ad395cf668ced01e518d7863bed003809de9176d3c3f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lisa-martabak62-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d34d4ed0aef7959c15d53fb039cfaede7cb7710177a3665025f096703436b869 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gita-rawon72-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5bd550a90ff7685b8419d25973a30a96db888ffb6390c226ad81ccd03314f13 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in oktafian-lontong3-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9eebd19cd655d272703db8d554f1cac34b65160a3e055c2abc1a3cb081b3582f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fauzi-mie73-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3034cf23f339f34d976064e5daf8a05350b66fe1456a5fa8419f89f41f64c04a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-66955 Malicious code in bewildered-black-magpie (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4b88694bd596902a819757c99cd9716dc39c7efe1bdb23496e6a76ab1425a23e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in evil-coffee-dragonfly (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ae3664e06efedba15e365b53fc802368b75cd727a341aef99f6cea2819bedb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in amused-amber-partridge (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe92f325cb2f8bba585932c37dc597908665232e0bb19aa3a0e58f25bd93b49d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in weekly-copper-grouse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4331caae1eb3bea0eb7b19d037e2ba2e0218028f98298cad73e5db77e6c941d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-68986 Malicious code in isolated-bronze-jackal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6235956f79263662ff129bf606e13aa3be29e48587b62990b39121fd5ecceba5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-66436 Malicious code in zain-tahu3-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90be907761b961f32e2c680ed27fe926f4ec3c464cd87f0dbdf5393ccb0df05c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kiki-sego51-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dba2e337197c1ad515d762d394ab3b747664b5c33aabec70bf542cb3e78ec41f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fadhil-mangut38-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96fe5ad1e7fd741699e8a86dc25d4028da1eba3b81d707b7bad9afa9599259c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
WordPress plugin Private Google Calendars 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
PT-2025-46325
Name of the Vulnerable Software and Affected Versions The Classified Listing – AI-Powered Classified ads & Business Directory Plugin versions up to and including 5.2.0 Description The Classified Listing – AI-Powered Classified ads & Business Directory Plugin for WordPress is susceptible to...
WordPress plugin Shelf Planner 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...
PT-2025-46265
Name of the Vulnerable Software and Affected Versions Shelf Planner plugin for WordPress versions prior to 2.7.1 Description The Shelf Planner plugin for WordPress is susceptible to unauthorized data modification. This is due to a lack of proper capability checks on several REST API endpoints. An...
PT-2025-46225
Name of the Vulnerable Software and Affected Versions SAP NetWeaver Enterprise Portal affected versions not specified Description An unauthenticated attacker can inject JNDI environment properties or provide a URL during JNDI lookup operations. This could allow access to an unintended JNDI...
WordPress plugin Classified Listing – AI-Powered Classified ads & Business Directory Plugin 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
PT-2025-46376
Name of the Vulnerable Software and Affected Versions NVIDIA AIStore affected versions not specified Description NVIDIA AIStore contains a security flaw in the Authentication AuthN component. A successful exploit of this issue may lead to escalation of privileges, information disclosure, and data...