429 matches found
MAL-2025-92948 Malicious code in zestful_mastodon_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c3ee1bc23d7c504fc1e477defca2bb2fc945937aa9ed949985d090a7df41e14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-82851 Malicious code in actual_lizard_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1a6cbac77d7cf31eb8da6856dbadbe25a08e1562aad7da445a6b0a5887f366a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fajar-klipo85-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a689a6d57340d870afb68e411b9db7fa6097b0e95a1581e9e43f6814a104192f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-77389 Malicious code in competent_spoonbill_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db02c82cb99bef938b3ef2bbff91c8bdfa37aef9ab0d7214613eda70b991beb3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-78543 Malicious code in glad_prawn_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33810e8cc92d41a1a20cb7e734f264d447f10dc77ae4bacd911aa9a38a2a0476 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in putri-kripik69-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7645190d5b321aa5d73a20801bd5c593f41ccc59fa1851031d548c5f194ae708 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rudi-rawon80-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5e8299a3a7a1fe43832f08c7a7abef7595e17426beba1a7d13d1204ff02e8b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-73872 Malicious code in kiki-mie97-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de11a997a9352cb966b36dc688d89ad4d5c4c1577a085ef2c6cebaa39a857bfc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in agreeable-magenta-marten (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cbbe43cb2baeea5965e26d2a22c285a62491851a10698c44b7f40ea4092be65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hanafi-klentik32-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a855639c2a7628d11568ac93f6a203ffa13b539cb441c276b9e9c6edfa831a61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nana-gado-gado91-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebda99f164e3f12deef601dbcd8baae1e9b17ab2d22c5c66f7fbfec3e420c415 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-66254 Malicious code in yanti-empal82-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d785b484529af52909e7043afb2670e17b30d1e11221796c5d1e92331bdfb29c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in overseas_bass_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0aee2a214f4b03551448d177b6a7e1c8ab9fd2305c1e1ebea65e0de0c25c857 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fresh_bass_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41ca1f395dce3f8447d766823c917f030024762df06ea8becbe834b2b0744883 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-58972 Malicious code in tomi-mangut66-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b00b8bbcdda878c8b6d8ae1e3c104b1455892238ad6ded9a4ccea312308fe0e7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lina-semur43-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afee15e36e1c353b4cd750da0e1f0223cd1c1e67cc7a8df081833a67ddc83890 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in okta-mieayam31-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9e5c6fca52a33d4993cb499b1fdafa0858176836f39b155c1c57c958530b584f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-36349
A vulnerability was found in shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5. This vulnerability affects unknown code of the file /process.php of the component POST Request Handler. The manipulation of the argument un results in sql injection. The attack can be launched remotely...
PT-2025-44045
Name of the Vulnerable Software and Affected Versions shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5 Description A SQL injection issue exists in the POST Request Handler component of shawon100 RUET OJ. The issue is located in the file /process.php and is triggered by manipulatin...
EUVD-2025-33925
A weakness has been identified in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. This affects an unknown function of the file /assets/editNotes.php. Executing manipulation of the argument File can lead to unrestricted upload. The attack can be launche...