330 matches found
CVE-2025-65278
An issue was discovered in file users.json in GroceryMart commit 21934e6 2020-10-23 allowing unauthenticated attackers to gain sensitive information including plaintext usernames and passwords...
PT-2025-48185
Name of the Vulnerable Software and Affected Versions GroceryMart versions prior to commit 21934e6 2020-10-23 Description An issue exists in the users.json file that allows unauthenticated attackers to obtain sensitive information, including plaintext usernames and passwords. The affected commit ...
Malicious code in passport-sirius-solis-quantum-computing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71a8f5006fbc5c9299aa79ac0bee47f5264e1092ca09e1b946cf61a371cbb882 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in higgs-biosignature-inflation-upgrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f6af5f94c074749c796605831b304d3b23f9cd7ecd27b0771334f6c877a95bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-188148 Malicious code in multiverse-perseus-ignite-ceres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e2dc25fda56b320b22f7aaa8af3bf5680fb5d97128cb6cfe22f2435a8dfc067 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-181941 Malicious code in flights-ilutg-iduihsa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f65d51f5974d7645eacbf7740216e63d4aa8be3e79248f9234f3ff046b024ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-177099 Malicious code in nuyar-adudar-baidaya (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60b14c42c5c025f0a90e4a441ceb8be3cdb4202ba6e5fdd6d871e96dedd9a6dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kim-jiwon-m (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6c7cdd6ded9086f94e7bf15a23146c63b851cca2a8b91826212ee985c741b4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nuilva-bavaim-madiaavo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce711a72e55145afd9763da28c1063e8958df6dcd5ce43da1caf2af6dd8c87ca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in goodaan-nusafa-nsafigassdfsi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f9d0774ec95146167830408b13990771fa49ec4f66b3523b2cd010352f76934 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-178973 Malicious code in tearich-good2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f9985e099c694c26950e215662b746895a751955bd13afe4457ae0d25c1339b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175652 Malicious code in ksaki-kaisoim-aolomalao (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 085309498e67044763fd3ca89827d12365209f6272bfa50e83371fe933fb1ee2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-177576 Malicious code in polymer-adag-agisihai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af8069005a84ea9426fdf9b0ab7f25359c6c22d470dbabde24b75cd2b63c9f2f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-178043 Malicious code in polymer-idaigfa-ratafavadaf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4375dc59889f566325c5e9639ef3f87de508017290d66666f5fd83e2c352237c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175696 Malicious code in kupaio-kia-jakaiaopoai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbd9a37ee99ecbad68d15277bf9efb8b7622a9f36c467224c419b0607de9b227 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-174721 Malicious code in hitachi-poke79 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 949ef628e2f0ec13e5415fe3bbd75a4fed2d302229f1d9de422ec5f7f8a0872e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in javedfarooq (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 738b276644f3a47356c4daf81adfabef6d9f25bbfd0efa7bb04512b3455dac85 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151865 Malicious code in aiboa-molipie-aramismia (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 799bd58692d633006d4efd17d4f01dbf012b3344e556422c440b2b5d7d60f9ed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in azhar-poke44 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27e19e9ef3834858b66d6b3bd17ce8e06b52ab8dbe34975357b84ce427bac40b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in manusia-tavail-maasdfdsdfgdfoi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 47625e4d7a68f005a562055989394a2becefa6eb118413e7668fb766c6e81f4d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...