5059 matches found
EUVD-2025-176074
Malicious code in tachyon-vortex-bellatrix-csv npm...
EUVD-2025-179453
Malicious code in csv-envconfig-achernar-stratigraphy npm...
Malicious code in typeorm-csv-troposphere-socketio (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e73547aa88679589280af7f97832cc643441c415a7b0c69aa00448db76023b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-179448
Malicious code in csv-steganography-sadr-buffer npm...
MAL-2025-186434 Malicious code in csv-steganography-sadr-buffer (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 576c9c5300d33eedfca84952fa6d232cca75ad84dbeb63ccde6da8ff03408c5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kuiperbelt-taurus-csv-ceres (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c8993b5329a7604ba0c4c94d86538798b1f58cc2d7e21fb16f89b966ebf27387 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in csv-puppeteer-phoenix-event (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 374bf3eeca6aa7f97f05cedd4268ceca21f16e8c36c450cb4fa2c17ac2ffd1ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-178749
Malicious code in gemini-csv-cryonics-castor npm...
EUVD-2025-179452
Malicious code in csv-helmet-dione-canopus npm...
EUVD-2025-178169
Malicious code in kuiperbelt-taurus-csv-ceres npm...
EUVD-2025-179455
Malicious code in csv-aldebaran-biohacking-cluster npm...
CVE-2025-64406
CVE-2025-64406 affects Apache OpenOffice up to 4.1.15. It is an out-of-bounds write vulnerability that could crash the program or corrupt memory when a crafted document is processed. Upgrading to OpenOffice 4.1.16 fixes the issue. CVSSv3.1 base score 4.3 (MEDIUM) with network attack vector, low c...
CVE-2025-64406 Apache OpenOffice: Possible memory corruption during CSV import
An out-of-bounds Write vulnerability in Apache OpenOffice could allow an attacker to craft a document that would crash the program, or otherwise corrupt other memory areas. This issue affects Apache OpenOffice: through 4.1.15. Users are recommended to upgrade to version 4.1.16, which fixes the...
CVE-2025-12732
CVE-2025-12732 impacts the WordPress plugin “WP Import – Ultimate CSV XML Importer for WordPress” (versions
CVE-2025-12732 WP Import – Ultimate CSV XML Importer for WordPress <= 7.33 - Missing Authorization to Authenticated (Author+) Sensitive Information Exposure
The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to unauthorized access of sensitive information due to a missing authorization check on the showsetting function in all versions up to, and including, 7.33. This makes it possible for authenticated attacker...
WordPress WP Import plugin <= 7.33 - Missing Authorization to Authenticated (Author+) Sensitive Information Exposure vulnerability
Missing Authorization to Authenticated Author+ Sensitive Information Exposure vulnerability discovered by M Indra Purnama type5afe in WordPress Plugin WP Ultimate CSV Importer versions = 7.33...
EUVD-2025-114761
Malicious code in csv-nashira-scorpius-indus npm...
EUVD-2025-114757
Malicious code in csv-ora-relay-canopus npm...
EUVD-2025-120579
Malicious code in webdriver-mocha-jabbah-csv-radiant npm...
EUVD-2025-122374
Malicious code in run-script-mysql-antd-csv npm...