140 matches found
MAL-2025-148213 Malicious code in spinner-uglify-js-sequelize-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ec3d26ff88984e14fb77619434a0b3aa7a4dbbd8742914e7a787d85979a1bc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140230 Malicious code in bulma-ultra-meteor-uglify-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfdfd1deafb4b573097ef89a887d9922514d7aceab4f029d5853fcc750934733 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-148868 Malicious code in uglify-js-chalk-spica-zenith (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58b881fb56e4e5e9ec3ca7c82173f3ee21d88ef3c5d395f2dc0a52edd7b49e78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142826 Malicious code in ganymede-uglify-js-quark-dotenv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df50c36528c4a8e1bab4e35ccc450588e1ba30021f8c1a6b0fc5acae6fac685a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143249 Malicious code in helmet-dactyl-flare-uglify-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57bd1c045b58ad64b757331e6f73aabe93eb2e88d53c053b83f4c13383b3f05b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sequelize-nashira-rigel-uglify-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c59d6fb63fb5556a47a76185951f64c80c5d8364358472ed927bf91c9fa3fdcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2017-0215
Malware in sbrugna...
EUVD-2017-0154
Malware in sbrugna...
Malicious code in uglify-js-prosthetics-typeorm-magnetosphere (npm)
The package uglify-js-prosthetics-typeorm-magnetosphere was found to contain malicious code...
Malicious code in slides-json-markdown-uglify-js (npm)
The package slides-json-markdown-uglify-js was found to contain malicious code...
Malicious code in yildun-epimetheus-uglify-js-relay (npm)
The package yildun-epimetheus-uglify-js-relay was found to contain malicious code...
Malicious code in figures-fornax-isostasy-uglify-js (npm)
The package figures-fornax-isostasy-uglify-js was found to contain malicious code...
Malicious code in uglify-js-forever-equinox-nodejs (npm)
The package uglify-js-forever-equinox-nodejs was found to contain malicious code...
MAL-2025-44260 Malicious code in figures-fornax-isostasy-uglify-js (npm)
The package figures-fornax-isostasy-uglify-js was found to contain malicious code...
MAL-2025-45500 Malicious code in paleoclimatology-selenium-neptunology-uglify-js (npm)
The package paleoclimatology-selenium-neptunology-uglify-js was found to contain malicious code...
MAL-2025-46791 Malicious code in yildun-epimetheus-uglify-js-relay (npm)
The package yildun-epimetheus-uglify-js-relay was found to contain malicious code...
MAL-2025-46436 Malicious code in uglify-js-forever-equinox-nodejs (npm)
The package uglify-js-forever-equinox-nodejs was found to contain malicious code...
MAL-2025-46437 Malicious code in uglify-js-prosthetics-typeorm-magnetosphere (npm)
The package uglify-js-prosthetics-typeorm-magnetosphere was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2015-8857
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers...
Malicious code in bellatrix-middleware-update-uglify-js (npm)
The package bellatrix-middleware-update-uglify-js was found to contain malicious code...