PT-2025-47323

Name of the Vulnerable Software and Affected Versions Eclipse Jersey versions 2.45, 3.0.16, 3.1.9 Description A race condition in Eclipse Jersey’s SSL configuration processing can lead to the ignoring of critical SSL configurations, including mutual authentication and custom key/trust stores. Thi...

Eclipse Jersey 竞争条件问题漏洞

Eclipse Jersey is a Java Web services development framework from the Eclipse Foundation. A Competitive Conditions Issue vulnerability exists in Eclipse Jersey versions 2.45, 3.0.16, and 3.1.9, which stems from a competitive condition that could lead to the omission of critical SSL configurations,...

EUVD-2025-176574

Malicious code in sadr-corvus-janus-eclipse npm...

EUVD-2025-180308

Malicious code in asteroid-winston-eclipse-hugo npm...

EUVD-2025-179202

Malicious code in eclipse-parsec-native-commitlint-config-angular npm...

EUVD-2025-178302

Malicious code in janus-regulus-eclipse-castor npm...

EUVD-2025-176624

Malicious code in robotics-auriga-eclipse-parcel npm...

EUVD-2025-179204

Malicious code in eclipse-hercules-europa-prettier-plugin-markdown npm...

Malicious code in eclipse-ursa-element-ui-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60b2f32fc1e6c1adb25c4d848fbe498ef1b40cff343779a68a89fa75d88f08b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-179205

Malicious code in eclipse-eridanus-upgrade-registry npm...

EUVD-2025-179642

Malicious code in commitizen-eclipse-sadr-chariklo npm...

EUVD-2025-178282

Malicious code in javascript-start-halley-eclipse npm...

MAL-2025-186678 Malicious code in eclipse-hercules-europa-prettier-plugin-markdown (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55c819411e05d0061457e9887c6906e3929d2896491c60dcced2f30818f4ef45 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186682 Malicious code in eclipse-ursa-element-ui-middleware (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60b2f32fc1e6c1adb25c4d848fbe498ef1b40cff343779a68a89fa75d88f08b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176978

Malicious code in protractor-eclipse-ini-subscription npm...

MAL-2025-186677 Malicious code in eclipse-eridanus-upgrade-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b9c1477a3588485280f9a465ef1fc8ff66f1091fe204ff4e7c224e91a7c634b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in commitlint-chalk-eclipse-init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b08cb43ec4ac2e4a214da7f273798b819d8970ac0a947c0225b6f9a4d62c83b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-179086

Malicious code in equinox-eclipse-redis-publish npm...

EUVD-2025-178721

Malicious code in geodynamo-callback-less-eclipse npm...

Malicious code in chai-schema-plutology-eclipse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1af430a378f890314e0bea7438fcf10fcaf30c0fc8e9081257df836dd6841a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...