32 matches found
react-native-modest-storage (=2.0.0) potentially affected by unknown CVE via @tiaanduplessis/json (=2.0.1)
@tiaanduplessis/json NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @tiaanduplessis/json and may be impacted: - react-native-modest-storage =2.0.0 Source cves: unknown CVE Source advisory: OSV:MAL-2025-191056...
MAL-2025-139658 Malicious code in atlas-sirius-comet-europa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 97fddec731b84136b26868a5785d71228d094a80260d9bc714df326b31567ead This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-128472 Malicious code in mahesa-sate21-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 513f4e69187129eb5decbb3e5dad1c2a59a231b195dbc9960acbfd07462a5a9e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kurniawan-kembang96-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0f62f4b549c1970bbc3ca978ab51d390beb44d4688bb1a43063f467c322e74d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-105021 Malicious code in late_guanaco_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3592625e8b09615e807b9d48c5ff3a0e361913cf9fffa050e810c47c939c3ecb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in andi-keripik5-kyuki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc6564bcf07516dfbaef97cb46ce4fc6fa885b3f9078ee46363417ee28933016 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rifqi-tapai16-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e247eb8e8b04f0f4c95d697e44abc63baa5c0a5440276bd575784daf8647eae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-71238 Malicious code in uncertain-turquoise-cockroach (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1869506b7dd4e94aabb4ee487f2edc20c7a89f3df5eb19d7a481db4401e39ca5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ade-mangut11-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00b79dbfd663b2f44b3daeda3d599b8e5a5b45a00858b8b322e35bbfb61bfdb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in hadi-keripik99-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 792b548a6f71c2793b0cd8b68af26145b027c29726d51cda00a99c012b1349fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2022-0059
Malicious code in bioql PyPI...
MAL-2025-47566 Malicious code in postman-json (npm)
The package postman-json was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 63e81e735aa1583841441847e7de0a269d581efabcfdcdac7cb7d6afd64df258 Any computer that has this package installed or running should be considered fully...
Malicious code in kastra-wezen-cache-json (npm)
The package kastra-wezen-cache-json was found to contain malicious code...
MAL-2025-12107 Malicious code in @zalastax/nolb-json-p (npm)
The package @zalastax/nolb-json-p was found to contain malicious code...
Malicious code in @zalastax/nolb-json-2 (npm)
The package @zalastax/nolb-json-2 was found to contain malicious code...
MAL-2025-12086 Malicious code in @zalastax/nolb-json- (npm)
The package @zalastax/nolb-json- was found to contain malicious code...
MAL-2025-12128 Malicious code in @zalastax/nolb-json_ (npm)
The package @zalastax/nolb-json was found to contain malicious code...
MAL-2025-711 Malicious code in nlohmann-json (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5aa85efabb2331d4495a31e8b8101fb7a0cdd11d7c9a4724b6fbb2a3c60b9296 Any computer that has this package installed or running should be considered...
openSUSE Security Advisory (SUSE-SU-2024:3543-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2024:14371-1 json-java-20240303-1.1 on GA media
These are all security issues fixed in the json-java-20240303-1.1 package on the GA media of openSUSE Tumbleweed...