18803 matches found
Malicious code in teagood-lokina92 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c5eb28a224238a5c71b3e268208476ea0881940bdd82e2b06c6c325df468b015 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nokire-rara93 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dd62a6295ce794735ae8e4f4d5134ae3331333d89c1b2ab11a6df8fd867d171 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2024-4890
creationtimestamp| type| source ---|---|--- 2025-11-12 15:00:09+00:00| published-proof-of-concept| Telegram/TnTlInxxzNpt0OgbsDLOj6rIodSNCMGeXkGWTk3FIFq8dbI...
Malicious code in webpack-apollo-remark-sedna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 421ceeabb85389e3b45f969cde72ca79241252f1cf6315d2f730f5367e54ce8a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143971 Malicious code in json-docusaurus-cosmiconfig-deimos (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 75a9c7c0cb232f49b5048a19ae36888fbf26e1cd53ba27072f1a10a5c6de44de This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139534 Malicious code in aquarius-epimetheus-mensa-ganymede (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f3ec09e7c79d82ae5f01e76fc90355ccd58308c893d2f7f8371ae20821c32c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nightwatch-triton-chromedriver-rigel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 963effceb0d337e9917a274606d2d06dfb6f477b03d1d27072955f2c53759913 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lint-perseus-betelgeuse-izar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0fa8f8962f849977da38989af1f68903aba39062e31527b08d77f2cbadcec83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142665 Malicious code in foundation-aether-fornax-duplex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e65d44ea2a5a494b6383705c3bfdd4225364b53e682092e07f297d14e116667c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146486 Malicious code in prettier-plugin-markdown-indus-wasat-leda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f05a1808f8706ac243238666ec94a2d41548943a8cb519f9bf6475a331efbbd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
PT-2025-46717
Name of the Vulnerable Software and Affected Versions DinukaNavaratna Dee Store version 1.0 Description A flaw exists in DinukaNavaratna Dee Store version 1.0 that can lead to missing authorization due to manipulation. The issue is present in an unknown function and can be exploited remotely. The...
MAL-2025-135328 Malicious code in lutfi-semur100-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f73c4f76ad2d357394088c85956e99cc3dd5d66aaafe7c93836aac3c403c21cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lutfi-mie41-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18a309d3f544f6b513e7c810e94b1ae330f394f072395639ff46969fd1ee7a72 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in candra-lupis39-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da477a8a52c32375ec2b58c11d47e8605ef7f5402e7fb4f445c24d2d3850a39e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-137773 Malicious code in vida-lapis17-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76aa78828e3efcb4d49961102ccf3bcfa79730c06de9127ebf7eaca629a74a84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-134767 Malicious code in joyous_anteater_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 520338df286716fb8fa63b6e5c8b31b8eabc01806c5d6c60343d69c26fa9f764 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ogi-miemee78-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d552e1c3c28ef52cc2746782daa27b32baf2037da5968250618373301e68f5e6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in quick_bovid_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e54584a2e5a8724007bf56aa31ca33c5caaf6835c82df85b12a6d40036821eb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-133853 Malicious code in gita-rendang92-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eeec6c9ee8adacad71f36ade08943acedbd475f95bd1535a2fdff0bbc4e317ae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in intensive_bee_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01d9da5ad0ece02267f55b8463b30039427fe57c77120c2439ef5fea8c79ea46 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...