3 matches found
MAL-2025-155088 Malicious code in finis-savion-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6ddb8f51db08d9f479588e0b7f0688a0b9e0f8a3d64fbe4910f2b286cdd33bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in finis-savion-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6ddb8f51db08d9f479588e0b7f0688a0b9e0f8a3d64fbe4910f2b286cdd33bc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2006-4434
Use-after-free vulnerability in Sendmail before 8.13.8 allows remote attackers to cause a denial of service crash via a long "header line", which causes a previously freed variable to be referenced. NOTE: the original developer has disputed the severity of this issue, saying "The only denial of...