665 matches found
EUVD-2025-116622
Malicious code in apex-html-webpack-plugin-configstore-polaris npm...
EUVD-2025-120104
Malicious code in yonder-acamar-terser-webpack-plugin-ariel npm...
EUVD-2025-120423
Malicious code in winston-magellan-miranda-terser-webpack-plugin npm...
EUVD-2025-111551
Malicious code in loopback-server-grunt-terser-webpack-plugin npm...
EUVD-2025-115102
Malicious code in concurrently-hexo-weywot-html-webpack-plugin npm...
Malicious code in html-webpack-plugin-sedna-css-loader-nebula (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e51b8fdb4d679e44dce5f94d31b2b02d247d6d9cadee2a0d6ef9711492a2d56a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-121920
Malicious code in slidev-html-webpack-plugin-mini-css-extract-plugin-markdown npm...
EUVD-2025-112143
Malicious code in json-development-publish-terser-webpack-plugin npm...
EUVD-2025-123297
Malicious code in procyon-wezen-html-webpack-plugin-wezen npm...
EUVD-2025-120795
Malicious code in version-firebase-yildun-terser-webpack-plugin npm...
EUVD-2025-113973
Malicious code in equinox-terser-webpack-plugin-dione-html-webpack-plugin npm...
EUVD-2025-116868
Malicious code in aether-mysql-eslint-config-html-webpack-plugin npm...
EUVD-2025-111664
Malicious code in lint-staged-dactyl-optimize-css-assets-webpack-plugin-less npm...
EUVD-2025-121373
Malicious code in terser-webpack-plugin-materialize-hugo-neptune npm...
EUVD-2025-112162
Malicious code in jovian-loopback-terser-webpack-plugin-protractor npm...
EUVD-2025-113065
Malicious code in gridsome-oauth-bulma-html-webpack-plugin npm...
EUVD-2025-112262
Malicious code in jasmine-fetch-standard-terser-webpack-plugin npm...
Malicious code in callback-run-script-html-webpack-plugin-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 281a3cc4cd04277d76318a794fe020a7ea9edc9d4d5148a26b7f40fcbf27f72a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116854
Malicious code in airbnb-antares-terser-webpack-plugin-oauth npm...
EUVD-2025-122956
Malicious code in query-despina-css-minimizer-webpack-plugin-juno npm...