325 matches found
MAL-2025-67482 Malicious code in cooing-gray-mole (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 881ca8c454ef1a6736eb745998a4e14080b2aa14beab979af3880d6407d3559f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-66831 Malicious code in architectural-gray-starfish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6801021e23535bd63c61f0282086a3dbf82aedfcfb4ba23190f870227bf25e25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-68102 Malicious code in eventual-gray-toucan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f55931deab3ae0ae5615438af685b8011a93a79bc7c3f8ffda4360bdb66e9a71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-67871 Malicious code in driving-gray-silverfish (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 54bb8f3e9dde279ed1814194c255e502c0c544950650136e069b73057febd217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-69605 Malicious code in net-gray-bison (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 207d197632e8546f7623e57c730878ac33c936aa5144bb8dec19af81652339d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-71576 Malicious code in wide-gray-iguana (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 76f9f46ab17a8725e6c2a214416a6503e882a9727e0bf0129ba42a11edd9337f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-70160 Malicious code in radical-gray-orangutan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ffa2c14f9d3d6661af4107f81c2efd9f50f7c9585ad02aaafaf99e808ec35c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-71244 Malicious code in uncomfortable-gray-kiwi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f797400c958a14c2158f75fe6b3c43089791e015b41bc732f8213c7a5de2220d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-50871
Malicious code in zesty-gray-parrotfish npm...
MAL-2025-66880 Malicious code in automatic-gray-skunk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81710e6891a73102e1c1ce83b3c70ade483d2a0d566eaed4ac50f3fbcdf3e6cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-70987 Malicious code in surprised-gray-chimpanzee (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ef79fe8cfe0b4a72c5015d70be6b83e73d78e0fe38ed0962e90ef1072efa796d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-71670 Malicious code in xenial-gray-rooster (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c909fd32d142c2802b048d6dc34b53ac35191014c9f8c32531145a354a55587 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Linux Distros Unpatched Vulnerability : CVE-2017-6849
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PoDoFo::PdfColorGray::PdfColorGray function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service NULL pointer dereference vi...
BACFuzz: Exposing the Silence on Broken Access Control Vulnerabilities in Web Applications
Broken Access Control BAC remains one of the most critical and widespread vulnerabilities in web applications, allowing attackers to access unauthorized resources or perform privileged actions. Despite its severity, BAC is underexplored in automated testing due to key challenges: the lack of...
CVE-2023-22491
Gatsby is a free and open source framework based on React that helps developers build websites and apps. The gatsby-transformer-remark plugin prior to versions 5.25.1 and 6.3.2 passes input through to the gray-matter npm package, which is vulnerable to JavaScript injection in its default...
Linux : Session closes immediately while getting gray screen for 10 seconds
When launch connection on linux vda from cloud, for a user the connection closes after a grey windows on vda user home folder is not created but other users may login fine...
PYSEC-2025-127
lunasvg v3.0.1 was discovered to contain a segmentation violation via the component grayfindcell...
PYSEC-2025-127
lunasvg v3.0.1 was discovered to contain a segmentation violation via the component grayfindcell...
CVE-2024-55456
lunasvg v3.0.1 was discovered to contain a segmentation violation via the component grayfindcell...
PYSEC-2025-133
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component grayrecordcell...