MAL-2025-128947 Malicious code in notable_possum_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe2cb45a6b913e87fbdb04d85cfb1eb0d5d3641c1acc053fbc38e717b848dfd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in notable_possum_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe2cb45a6b913e87fbdb04d85cfb1eb0d5d3641c1acc053fbc38e717b848dfd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-103458

Malicious code in notablepossumz3n npm...

EUVD-2025-103460

Malicious code in notablecicadaz3n npm...

EUVD-2025-96159

Malicious code in notablejaguarz3n npm...

EUVD-2025-89819

Malicious code in notabledamselflyz3n npm...

EUVD-2025-89817

Malicious code in notableopossumz3n npm...

EUVD-2025-74417

Malicious code in notabletortoisered-17 npm...

EUVD-2025-76168

Malicious code in notablecockroach-toolteadev npm...

EUVD-2025-77556

Malicious code in notableswordfishcoral-55 npm...

EUVD-2025-78704

Malicious code in notablepelicanz3n npm...

EUVD-2025-62880

Malicious code in notableaardwolfz3n npm...

Malicious code in notable_chipmunk_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a85d5411358cebdd8843c8574278db8eb33e9f65e598e6c946cd48b4422a5f6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-53006

Malicious code in notable-yellow-lungfish npm...

EUVD-2025-53008

Malicious code in notable-aqua-jay npm...

EUVD-2022-30762

Malicious code in bioql PyPI...

CVE-2020-16608

Notable 1.8.4 allows XSS via crafted Markdown text, with resultant remote code execution because nodeIntegration in webPreferences is true...

CVE-2023-5868

A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals without type designation can disclose bytes,...

Big changes to Twitter verification: How to spot a verified account

Twitter has made some fairly major changes to how its verified checkmark status works, and its already causing some confusion. If you rely on the checkmark symbol for confirmation that the individual or business tweeting is actually the real deal, your regular process is now different. How...

What’s New in InsightVM and Nexpose: Q3 2022 in Review

Another quarter comes to a close! While we definitely had our share of summer fun, our team continued to invest in the product, releasing features and updates like recurring coverage for enterprise technologies, performance enhancements, and more. Let’s take a look at some of the key releases in...