13 matches found
Malicious code in teate-thy-sonic-zoic (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbf9af45cdf1351dc61638d12992e59ce2e1027898f13d7040f286791e77fb34 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-159677 Malicious code in mans-manapa-nutay (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ec6c87a4fd565cbed5629f062e6b123df59694c76616217bbe460b6afa35864 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-164211 Malicious code in pilka-luniu-kanulaniniu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3596b9bac6ccf23a1fac91acaf277861ee20873b50a1f3d089293eed0de2e436 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-146992 Malicious code in quito-firebase-supervisor-spinner (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5a09f7f0d9ead6a273ab5178cea56b022f83751858faba9668dbe82686d7978 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-138084 Malicious code in wise_hoverfly_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 723e1e8b82821835ea36194fd25997c150a28f332eedc0d0c4cae299ab177684 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-131234 Malicious code in wawan-keripik35-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc9812f656018bf30883a264c54205900f93682dde18cd28374d574130fe468f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-119575 Malicious code in dono-papeda50-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 67f0839e217d71bb0a4fae8eb35f6dbb23f471f6021204c133476e3357e6a1fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-118077 Malicious code in wibowo-kue50-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abf2d6406aadcab2382a4906a742128a71ed44061cd5bde8326ff2eb4010d643 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mahesa-dodol61-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd821526b353df33257b65dff59b29eee73fbc156ed5389d8e0e555700ca54ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nadia-tek23-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe3899e594fcb87970833f1f79f956b67ea0ebfe4b955f1ba2c4d20dbe83ba52 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-70268 Malicious code in regulatory-harlequin-cougar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4968753ad38701ba2dfe12d95e50fa0c65b03487d7b4e6f8539ab31338e596c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-6183
The StrongDM macOS client incorrectly processed JSON-formatted messages. Attackers could potentially modify macOS system configuration by crafting a malicious JSON message...
HP SoftPaq 安全漏洞
HP SoftPaq is a download manager from Hewlett-Packard HP USA. A security vulnerability exists in HP SoftPaq that stems from the fact that it may be susceptible to arbitrary code execution attacks when configuration files are modified after extraction...