76 matches found
Malicious code in cheap-jade-cow (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a81d3659d9fad15ce97a4bfbe71d73124eefbab59b32ef6330f292cbcd96a4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cheap-lavender-chinchilla (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ad4c00b2f73e39731bfc44232196d4517bceb4cf03bcf9d70417bef651fc1f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cheap-coral-ant (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 496bb02add0626a7c3458382465d1fc020153c76cf6031727f08c86c9b0abfcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55493
Malicious code in cheap-jade-cow npm...
EUVD-2025-55492
Malicious code in cheap-lavender-chinchilla npm...
EUVD-2025-55494
Malicious code in cheap-coral-ant npm...
MAL-2025-67156 Malicious code in cheap-jade-cow (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a81d3659d9fad15ce97a4bfbe71d73124eefbab59b32ef6330f292cbcd96a4c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-50582
Malicious code in cheapguineafowlz3n npm...
Raspberry Pi Pico As a Radio Transmitter
In this paper we discuss several surprisingly simple methods for transforming the Raspberry Pi Pico RP2 microcontroller into a radio transmitter, by using only cheap off the shelf electronic components, and open source software. While initially this transformation may look as a harmless curiosity...
Cybercriminals Exploit Cheap VPS to Launch SaaS Hijacking Attacks
Darktrace researchers have discovered a new wave of attacks where cybercriminals use cheap Virtual Private Servers VPS to…...
Malicious code in test-mlw2-fouls-bassy-ovate-cheap (npm)
The package test-mlw2-fouls-bassy-ovate-cheap was found to contain malicious code...
MAL-2025-35367 Malicious code in test-mlw2-fouls-bassy-ovate-cheap (npm)
The package test-mlw2-fouls-bassy-ovate-cheap was found to contain malicious code...
PT-2025-26357 · Unknown · Appcheap.Io App Builder
Name of the Vulnerable Software and Affected Versions: App Cheap App Builder versions through 5.5.3 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For App Cheap App Builder...
CVE-2025-48127
Missing Authorization vulnerability in App Cheap Push notification for Mobile and Web app push-notification-mobile-and-web-app allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Push notification for Mobile and Web app: from n/a through = 2.0.3...
CVE-2025-48127
CVE-2025-48127 is a Missing Authorization vulnerability in the WordPress plugin Push notification for Mobile and Web app , caused by misconfigured access control. Affected versions are listed as “from n/a through 2.0.3” (no public product/version details provided). The CVSS vector (AV:N/AC:L/PR:N...
PT-2025-21727 · Unknown · App Cheap Push Notification
Name of the Vulnerable Software and Affected Versions: App Cheap Push notification for Mobile and Web app versions n/a through 2.0.3 Description: The issue is related to a Missing Authorization vulnerability, which allows the exploitation of incorrectly configured access control security levels...
cheap-poland.com Cross Site Scripting vulnerability OBB-3754059
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cheap-laptop-batteries.net Cross Site Scripting vulnerability OBB-3738505
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
How Your Real Flight Reservation Can Be Used to Scam You
Scammers use a booking technicality, traveler confusion, and promises of dirt-cheap tickets to offer hot deals that are anything but...
cheap-poland.com Cross Site Scripting vulnerability OBB-3360037
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...