2424 matches found
MAL-2025-84332 Malicious code in deep_parakeet_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdb4d48f402a79278af3f9a2f99a37a131b65fbf4f08f0883b3d618ed9aa9cbb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-86642
Malicious code in deepmoosez3n npm...
Malicious code in deep-brown-eel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d09bca630fd1923311534a8f3863744b2cfcf731f284116c33d1e3f0bdf145a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-54993
Malicious code in deep-blush-moose npm...
EUVD-2025-54994
Malicious code in deep-apricot-guppy npm...
EUVD-2025-54992
Malicious code in deep-brown-eel npm...
Malicious code in deep-apricot-guppy (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7915cc42f66ce6fc03860c95eb3adb39ae3774f2724a7e9a742f01b957487709 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-60215
Malicious code in deepdormousez3n npm...
Binary and Multiclass Cyberattack Classification on GeNIS Dataset
The integration of Artificial Intelligence AI in Network Intrusion Detection Systems NIDS is a promising approach to tackle the increasing sophistication of cyberattacks. However, since Machine Learning ML and Deep Learning DL models rely heavily on the quality of their training data, the lack of...
Malicious code in deep_eel_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca317d3f4010ebf98c1ddcb859e5f72cccd55980b6355a825383105d403dfb5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-50425
Malicious code in deepeelz3n npm...
MAL-2025-60244 Malicious code in deep_eel_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca317d3f4010ebf98c1ddcb859e5f72cccd55980b6355a825383105d403dfb5e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-55752 Malicious code in deep_giraffe_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f8e789e71cb3d452108c48dec8f4b6deb11f3dc4b1ce86c5713e335f97cceb2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CLSA-2025-1762420153 delve: Fix of CVE-2024-34156
rebuild with newer golang to fix CVE-2024-34156 stack exhaustion in encoding/gob when decoding deeply nested structures...
CVE-2025-64106
Cursor is a code editor built for programming with AI. In versions 1.7.28 and below, an input validation flaw in Cursor's MCP server installation enables specially crafted deep-links to bypass the standard security warnings and conceal executed commands from users if they choose to accept the...
CVE-2025-64106 Cursor: Speedbump Modal Bypass in MCP Server Deep-Link
Cursor is a code editor built for programming with AI. In versions 1.7.28 and below, an input validation flaw in Cursor's MCP server installation enables specially crafted deep-links to bypass the standard security warnings and conceal executed commands from users if they choose to accept the...
CVE-2025-64106 Cursor: Speedbump Modal Bypass in MCP Server Deep-Link
Cursor is a code editor built for programming with AI. In versions 1.7.28 and below, an input validation flaw in Cursor's MCP server installation enables specially crafted deep-links to bypass the standard security warnings and conceal executed commands from users if they choose to accept the...
CVE-2025-64106
Cursor (code editor with AI) versions 1.7.28 and below contain an input validation flaw in the MCP server installation that allows specially crafted deep-links to bypass security warnings and execute attacker-specified commands when a user accepts the server connection. Affected component: the MC...
CVE-2025-64106 Cursor: Speedbump Modal Bypass in MCP Server Deep-Link
Cursor is a code editor built for programming with AI. In versions 1.7.28 and below, an input validation flaw in Cursor's MCP server installation enables specially crafted deep-links to bypass the standard security warnings and conceal executed commands from users if they choose to accept the...
Cursor 操作系统命令注入漏洞
Cursor is an AI code editor from Cursor Open Source. An operating system command injection vulnerability exists in Cursor versions 1.7.28 and earlier, which stems from insufficient input validation during the MCP server installation process, and could lead to a specially crafted deep link bypassi...