4389 matches found
EUVD-2025-111156
Malicious code in middleware-jwt-nodejs-less npm...
EUVD-2025-112368
Malicious code in iota-umbra-upgrade-nodejs npm...
Malicious code in algol-sagitta-nodejs-ursa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7dc9bd45ef009b6ab43395bebf52be6466adfbaa8040ea661dbe076e5603fca This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in blitz-nodejs-postcss-umbra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45892fb45c9f93ca8fd5b90a65388042f2205a48413aa509a34733d2c1d972cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dagda-nodejs-magellan-mysql (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 792a64ac652bb6ab18229a861d7f5b30e92db6d2015ab8974b4e844b2e63c799 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fornax-polaris-nodejs-ignite (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 870b483c3e5dec4b59b012c59f411ded04b1a425d2ddc90c8f1879a41198ce5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in leda-async-nodejs-izar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 919099f39c4c627753c0eacb2c31a393a6a92e02b8a16c383406fc50a41281d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nodejs-dependencies-unuk-duplex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 071fc09dfbb31483cee6efe94d252e17936fa2604f6c450ed55d774c64b7e440 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nodejs-metalsmith-kinetic-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 878d6af5f0a46610edc9311c111f32eee574f8f65046961c73337c1f01e83e08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ora-achernar-kinetic-postgres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 466b3999a1f913ccb9440477973486798c1cb1a637ffaeb420dd26a67dd1f17c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in phenomic-json-nodejs-configstore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84e01dead8d8853b5795ad6a7c6064b9c62e43df2d92bce5cd0c4644461caa69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in pm2-xerxes-luna-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5728f29060650121e6a105763cb85fb35cb529f487913d7a652cc79c9e0087b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in procyon-nodejs-link-metalsmith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc6885027c9d224f1ad6b3459b777b2bc5cea2880932235a3b714080e6f01573 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quark-pipe-mocha-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fbf13855675eb0f04555f377cf94b4bcc89c117c1b9e7a004ad4c3159c4c47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in redis-europa-nodejs-rate-limiter (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33e6c8ec825ff834f3e5e8833c43a6562685e59b8c189ec4687da1cad6bfd3a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sirius-fork-nodejs-bellatrix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c6c1bd831399d8c2b516a325a12d79cba13a091a76042525b7e1c1c6feb29e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in start-ursa-nodejs-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 593bc23c8976e4718436bc2e85ed27103ac307c4bd87d7308b8a3d041620871c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in testcafe-xenon-chakra-ui-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e267c663a12b26a567a3e6b07f7a2e36b7ae20b41b5d94b5f4b655fd5f09d444 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tool-sails-nodejs-resolvers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd93e3471899ae35d729a7f8c6bdeca06ee3b377bb9447f02dc441b537fe77a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in upgrade-selenium-nodejs-lyra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c05fac68d2ae84d2d004354b5f094461e364e0f684064354fb8cd27ba37ae1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...