173 matches found
Malicious code in html-webpack-plugin-hyperion-vulcan-neptune (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b341a0c15bb2ca0e6a7ae84ac4e02681230227fc30a00d3a2f1af1c0d6f4f74 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-112751
Malicious code in html-webpack-plugin-epimetheus-unuk-configstore npm...
EUVD-2025-120948
Malicious code in unuk-iota-zenith-html-webpack-plugin npm...
EUVD-2025-115102
Malicious code in concurrently-hexo-weywot-html-webpack-plugin npm...
Malicious code in dynamo-kronos-loop-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1facc111643156c60818083a3221391ae68c90805f74a1411946c0be5cc3821 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-124157
Malicious code in octans-command-html-webpack-plugin-build npm...
Malicious code in polaris-betelgeuse-html-webpack-plugin-pm2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d019ca346c566d05986b11fd678198d3a7f42e5ef2de48fd52d62dc516a8c9c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-114281
Malicious code in dynamo-kronos-loop-html-webpack-plugin npm...
EUVD-2025-113571
Malicious code in fomalhaut-gridsome-sagitta-html-webpack-plugin npm...
EUVD-2025-112738
Malicious code in html-webpack-plugin-transform-google-transport npm...
EUVD-2025-114740
Malicious code in cygnus-html-webpack-plugin-convict-sagitta npm...
EUVD-2025-123851
Malicious code in perseus-blaze-pegasus-html-webpack-plugin npm...
EUVD-2025-116106
Malicious code in betelgeuse-ophiuchus-html-webpack-plugin-yakutsk npm...
MAL-2025-147450 Malicious code in rimraf-izar-html-webpack-plugin-rigel (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 969f0af5a2acd4f35bc9f6a12bfdee60b30945dd4a21464b014b22f579711f02 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-143358 Malicious code in html-webpack-plugin-csrf-link-changelog (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 922ca18a44731d301d1740519b17256d39a472601f460a03933bf194565d2642 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144930 Malicious code in meteor-registry-html-webpack-plugin-gravity (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ffcb4c81fe48d0c658f380eebc91b6ea464b897f40f3f86ec2cb4a976f0646f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147002 Malicious code in quito-request-karma-html-webpack-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c90bb0614863aef8fa9c825f50394f601085ce72fe96a6c0d37ac4d097153fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-123327
Malicious code in procyon-html-webpack-plugin-nodemon-phoebe npm...
EUVD-2025-114140
Malicious code in element-ui-html-webpack-plugin-impulse-odin npm...
EUVD-2025-112735
Malicious code in html-webpack-plugin-xenon-gacrux-io npm...