255 matches found
WordPress Guppy <=1.1 - Information Disclosure
WordPress Guppy plugin through 1.1 is susceptible to an API disclosure vulnerability. This can allow an attacker to obtain all user IDs and then use them to make API requests to get messages sent between users and/or send messages posing as one user to another. id: CVE-2021-24997 info: name:...
📄 GuppY CMS 6.00.10 Shell Upload
Proof of concept exploit demonstrating a remote shell upload vulnerability in GuppY CMS version 6.00.10. ============================================================================================================================================= | Title : GuppY CMS 6.00.10 php Code Execution...
EUVD-2025-101679
Malicious code in agriculturalguppyz3n npm...
Malicious code in continuing_guppy_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e625a17bd048005281e0689028f33d2ad5596891584a5c34d9452712269db208 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-105999
Malicious code in continuingguppyz3n npm...
EUVD-2025-106631
Malicious code in amusedguppyz3n npm...
EUVD-2025-90132
Malicious code in marxistguppyz3n npm...
EUVD-2025-92380
Malicious code in easyguppyz3n npm...
EUVD-2025-89201
Malicious code in relevantguppyz3n npm...
MAL-2025-116676 Malicious code in regular_guppy_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3efdfe8ff1854f9bb572f43da75c81cf37046a4994ad45a3ecc770a5c57ac922 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-89208
Malicious code in regularguppyz3n npm...
Malicious code in sole_guppy_scarlet-17 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3b6340f7135d49cbf460593d0554cf180e3f260e284b3172a0c37b927045aa4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-74306
Malicious code in registeredguppybrown-94 npm...
EUVD-2025-76264
Malicious code in mixedguppy-smiletea npm...
EUVD-2025-76940
Malicious code in everydayguppy-smiletea npm...
MAL-2025-99193 Malicious code in administrative_guppy-smiletea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9d5d1ef8a280c3fb0a7b787e053f59954a5b19f33553a1739b865df271ba3f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-76893
Malicious code in extraguppy-silentdev npm...
EUVD-2025-77314
Malicious code in collectiveguppy-appteadev npm...
Malicious code in collective_guppy-appteadev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a80eaf431a573c5d5aaee4e76e8c41f261441475579c0d95d122302e86a25f8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-77501
Malicious code in tastyguppyorange-100 npm...