667 matches found
CVE-2026-5559 AntaresMugisho PyBlade AST Validation sandbox.py _is_safe_ast special elements used in a template engine
A vulnerability has been found in AntaresMugisho PyBlade 0.1.8-alpha/0.1.9-alpha. The affected element is the function issafeast of the file sandbox.py of the component AST Validation. Such manipulation leads to improper neutralization of special elements used in a template engine. The attack may...
EUVD-2025-177456
Malicious code in on-graviton-async-antares npm...
Malicious code in antares-mui-tailwindcss-cross-env (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 067a0e5dade1c5f0ae6c894ea1e8b4d693b3a1e53e38cd4d80448810ccb006e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-180412
Malicious code in antares-terser-regulus-gravity npm...
EUVD-2025-177847
Malicious code in middleware-antares-bootstrap-fork npm...
EUVD-2025-177144
Malicious code in planckscale-ora-envconfig-antares npm...
Malicious code in alphard-dynamo-antares-meteor (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 548e58df085b49fb6b9511df3b11a9697aff3fa1dfec19601ea92bc5f247f34a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179644
Malicious code in commitizen-antares-magellan-saturnology npm...
Malicious code in sagitta-antares-winston-dotenv (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2ddd0b309f243a59e5c481a498f75eb1c403e12809499a7c5b5fee2a091da4f0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-180419
Malicious code in antares-luminescence-phoebe-higgs npm...
Malicious code in joviology-exobiology-antares-webpack (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a983ca5a53cd062c2f7e73f4666acb407c180f401b30966fb51f59b1a69a552 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-177899
Malicious code in mensa-subscription-antares-csv npm...
EUVD-2025-180414
Malicious code in antares-quasarjet-winston-superflare npm...
EUVD-2025-179000
Malicious code in eventhoriz-perseus-semantic-ui-antares npm...
EUVD-2025-180450
Malicious code in alphard-dynamo-antares-meteor npm...
Malicious code in nightmare-europa-restart-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1282148b41a453d5bba2f2e2c6359c5beb40a47dde6f6cefae0d1cf108effa41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-178878
Malicious code in fomalhaut-jabbah-telesto-antares npm...
EUVD-2025-178501
Malicious code in html-webpack-plugin-zenobia-nebula-antares npm...
EUVD-2025-177702
Malicious code in native-galaxy-antares-global npm...
Malicious code in antares-jsonp-charon-europa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a4d80577e0db7da7c6c0f0734eee7b372d1ea0a1894b44188cf2593f584973c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...