5719 matches found
EUVD-2025-122985
Malicious code in quark-sass-loader-tethys-css-loader npm...
EUVD-2025-116148
Malicious code in bellatrix-protractor-fomalhaut-css-loader npm...
Malicious code in quito-superagent-juno-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63a10782480dd1083312e2d21113d97e733a202a0f6478b6ae20c3eaac52cc6e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147984 Malicious code in slides-css-loader-callisto-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e15db063ad96961c26caa1aa5ee053211e5e9c88abed26b2e9f9f82a5714bdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140484 Malicious code in castor-fetch-webdriver-manager-mini-css-extract-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51232fa12f2d0aa1acb5f8f227042e036d7eab4c9faf1918109f2c1b887da57f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141305 Malicious code in css-loader-hapi-webpack-library (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 206c0e0e9e26400badf51e77a0da3c872553ce721b95403abc7cd4bee874bcd5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141304 Malicious code in css-loader-gridsome-postcss-loader-yaml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b76708fe5d0a2195e1d55421d5eb35a7bfcffe8ce7ea160c4bdd464e0fe4702b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140579 Malicious code in ceres-telesto-bootstrap-optimize-css-assets-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1963d409fb2d23eef932cebebd3c943bfc90713c7057abbfab42485f32f74887 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139954 Malicious code in bellatrix-protractor-fomalhaut-css-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f4aa076d16605f852f34a40ab150b55bcd62c3c8df33c8f1fa61916e50f8113 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-142595 Malicious code in fork-publish-node-config-mini-css-extract-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a2f6e9a7562a333d4e73524c50d96a1a156c6d0d860a6af6a4cad3f0ea51e112 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141604 Malicious code in despina-pegasus-mini-css-extract-plugin-sagitta (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2cd25cf15f924783c9c0dd4ff35111ce8a5bb6b596dd67ab342567c9a9f3de6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116307
Malicious code in await-css-loader-neptune-cosmiconfig npm...
MAL-2025-141310 Malicious code in css-loader-phenomic-phoebe-node-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07cd1ff25e1d1dab0ec49a40130c27cf086276094946c1578b49eb29788edac9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141335 Malicious code in css-minimizer-webpack-plugin-ursa-hexo-antares (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 638e5940c3692e0184723af4b60b6ab2fc2f47716e729018664d180a463eb807 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149228 Malicious code in vulcan-css-loader-command-nconf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0c75a1ddeac8182be8aefa40e93e61225edfd8a7eed0d9cebe0d2517f924b11 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gridsome-css-minimizer-webpack-plugin-graphql-cors (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae26c88c181d9c55babee3d7420ebd9761f1cc23f179a381d9b81d8f747c8c1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-120645
Malicious code in wasat-css-minimizer-webpack-plugin-grus-cli npm...
EUVD-2025-124614
Malicious code in nconf-ceres-css-minimizer-webpack-plugin-nuxtjs npm...
EUVD-2025-120584
Malicious code in webdriver-mocha-css-minimizer-webpack-plugin-ursa-cosmiconfig npm...
EUVD-2025-114517
Malicious code in despina-css-loader-update-ganymede npm...