CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-124055

Malicious code in optimize-css-assets-webpack-plugin-markdown-octans-blaze npm...

EUVD•added 2025/11/12 4:29 a.m.•3 views

EUVD-2025-121383

Malicious code in terser-webpack-plugin-csv-transform-native npm...

OSV•added 2025/11/12 4:29 a.m.•3 views

MAL-2025-147504 Malicious code in rollup-nightmare-nodejs-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 013d8c46a1af7deb1ec86ef06930fca85b4c0bc9fa04823847913c05b0e6d62f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-147450 Malicious code in rimraf-izar-html-webpack-plugin-rigel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 969f0af5a2acd4f35bc9f6a12bfdee60b30945dd4a21464b014b22f579711f02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148544 Malicious code in terser-webpack-plugin-child-process-bunyan-rollup-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4839b0d11bd49cc80454d892a0010eb13cfbad005fb5bf93717d6f499ff2dd7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148275 Malicious code in start-lint-staged-antares-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65ca9dec5af3f6986b7abaf03d78477121b87d0e5875637fd40a490404dd5368 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-144913 Malicious code in meteor-html-webpack-plugin-mui-selenium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2ba44be2ccd673c3f19ceb7a542f761f31250400b8f3caa7ffa5327a7e58323 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-112542

Malicious code in indus-optimize-css-assets-webpack-plugin-antd-quasar npm...

MAL-2025-148542 Malicious code in terser-webpack-plugin-airbnb-test-node-sass (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad7a06295fbc84afce143fd5b0a10715eb54d6bfc38ec32d8c2022006a9c0cc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-141602 Malicious code in despina-octans-metalsmith-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9384bbb9fc0aa0e1f16a71cc9464392c53182e411ef298e21246033a29d53347 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•2 views

MAL-2025-145355 Malicious code in neptune-chalk-html-webpack-plugin-virgo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69cd6f6bed9776d6240e81efcaf980f3e86f7f36bdacffd76d292c2d9397deee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•2 views

MAL-2025-148554 Malicious code in terser-webpack-plugin-lint-toml-nebula (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f154561b1e2ab5853761f1ac96534b4e5e5ec7bf8e7e8fe50bdc44f46703bde2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-121379

Malicious code in terser-webpack-plugin-eslint-plugin-loglevel-titan npm...

EUVD-2025-122920

Malicious code in quito-request-karma-html-webpack-plugin npm...