20 matches found
MAL-2025-186869 Malicious code in europa-loglevel-levels-async (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adb23e5f025e22619db0589bfdd3e0f01870534acb40e91b70a63bd6a2c90f08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-184279 Malicious code in modiov-kian-avcaf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e7dcae918ceedd2393d86597d1eb7b34c627b289e772658069e48ef97cfcbb8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in polymera-anasri (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0f230159a904a5c9908a33653eb5fcac3db22e5e68e2dab9e6c619b76fbc1ed4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in butry-mutyu-waegressur (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 641476f82799aaf1d10a93d30259c24d0eb40b69a6b28e8852ddb32c79b70539 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in miands-minst-vusd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e8087075390bedbee654c5121f2239308b4224955df98289952446bc4cd5469 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-169856 Malicious code in uinsu-lista-atumuna (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65d81262425c8d0bcc29d338485b467d50f576bee587f1f169034afe4849c962 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-164438 Malicious code in polymedr-minus-buipenaj (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c7a77584754b0df1ed6551c159747189fd0a72a1576f7ad5d9fc8b69b263677 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-125904 Malicious code in disturbing_hedgehog_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7602a2ed8df2f2f27a82d54164a33c1a86ca3620fdc62933c481722bebe60715 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-113534 Malicious code in eka-nasi28-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb273f632d495afeed791fd6aae76ccf2037789323b2040f81617758c9271761 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-107932 Malicious code in resident_kite-apptea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0e0626eaab45b6fad715b8e901c16b17518a93b08d43bea04ed396764f65ae8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-104079 Malicious code in increased_zebra_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4973fc9564be85b535adeae142fc5da481dd8341c350ef81f4c743d93febc22 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-74298 Malicious code in mahesa-nasisayur75-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 361f5e5bda0e26e3dc13325896abdc797240d5f6f9cbdb0cded67a642cb731e3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-62784 Malicious code in erick-serabi57-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8391f94e2641b7b8280e5486e597c3e5b320f143a41769874ce05305e228ccb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-60495 Malicious code in following_felidae_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0241d6ed257c0269760c41b7fa0674a579be5026f4cd3d764369b1a7b6ff2ded This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in erick-nasicampur87-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d81f3d7c516a211cb40058756f73657a32d0892a784a5c6263673a1182ab06b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-53693 Malicious code in indah-rangi2-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 935cb033efbd0fc7a0d2bb24a51aa4b0b8ca60bfa08e3b7476c9fa504b2e3aed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in patria-ketan57-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7d1bee9dac41591809a0adcc3c3bd5b00c0ad205d3fe085e5743c01fa89548d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in putri-sambel40-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b718909e8c3b669c07f7c1e91d0061838280347215b33addc6971a0cc50125df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-51217 Malicious code in candra-mieaceh93-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d62901fb69cf3a7bcc41efca2f38a7546bd725b2c72c667b4f4b063d869bd99e The package candra-mieaceh93-breki was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that...
Design/Logic Flaw
mailscanner 4.55.10 and other versions before 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the 1 f-prot-autoupdate, 2 clamav-autoupdate, 3 panda-autoupdate.new, 4 trend-autoupdate.new, and 5 rav-autoupdate.new scripts in...