47 matches found
USN-8518-1: mailcap vulnerability
Aaron Rainbolt discovered that the cautious-launcher utility in the mailcap package did not properly restrict the execution of certain file types. An attacker could use this issue to escape a sandboxed application and execute arbitrary code on the host operating system...
EUVD-2025-100785
Malicious code in cautioushalibutz3n npm...
EUVD-2025-106247
Malicious code in cautiousguanacoz3n npm...
MAL-2025-119056 Malicious code in cautious_fish_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d959a771597c47073f47af4e49ec23197d7545f6313759b17262f75724be27c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-77373
Malicious code in cautiousjackal-notthedevs npm...
EUVD-2025-77371
Malicious code in cautiousnarwhal-appteadev npm...
EUVD-2025-77372
Malicious code in cautiousmosquito-appteadev npm...
EUVD-2025-79672
Malicious code in cautiousjaguarz3n npm...
EUVD-2025-82554
Malicious code in cautiousbasiliskreplicateautomation npm...
EUVD-2025-71166
Malicious code in cautiouscondorz3n npm...
EUVD-2025-65069
Malicious code in cautiousanglerfishz3n npm...
Malicious code in cautious_anglerfish_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8d63b6ecdd88b33a94d51e3c8bc333c0df903d43877c0e6c50110de32058991 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cautious_rabbit_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5fc42342e3b0282c799ff76556277e14ff6d9221e2c74ed08c3cac4c10db3c98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cautious_stingray_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 834f79ee9d1641ab8ff364f61630f1bb8e0b77fc3dab80bd10de88701aa981a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cautious-silver-bonobo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 459b3a6f9f8139a4539a0838fbe6b3e34609a18eb1a82e1a91457fcf5fa02304 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55522
Malicious code in cautious-plum-chameleon npm...
Malicious code in cautious-red-weasel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 332780866d7f810b5ef4ab85c3d89cea9eb7972a28350f13c258656ce9cd49e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cautious-blush-lamprey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb927e3912bedd6129b6e72b1c39e04eee32126566e8274b0822ae83946c7b8d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cautious-moccasin-nightingale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5f1b206ad012320110f03436837d2dfc620d43d35dd345b2b24cff4c25cda10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55526
Malicious code in cautious-blush-lamprey npm...