15 matches found
MAL-2025-178554 Malicious code in sahufarf-satidaf-farirataf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 140b98856a1f3ba237937d9f0352f30a9d20b4fa73e3dede89ee57ad288530ab This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rindaman-poke61 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93c0f06514079fe6c6dc187ef41c25cd194e867ea8045cd11233165043e30e51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kapai-afama-agda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ab5d6c9fbb5ae3d306196ab9466c20f4146936eb55ab86df8a48422894099a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in masan-ofa-batouila (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7270dfd155c02b9a0dbdafd7f2ebe93415696c4ebb50364285278943e2750f7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-152694 Malicious code in angin-poke37 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d560712bf43dd69553bfd68726aac8cad3ae6d1cb54ca40f3c39718780267a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in deneb-quark-dotenv-safe-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79765b50847846187d16a72a0ce89db9097d30c7599971e7283f47b87b0a8334 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in ignite-callback-node-config-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8894545ee7492ce0676852567fe5d3d6b2139f08799c38602766a6a8f7f91fb1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in oauth-barnard-resolvers-cosmiconfig (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea66277b18e096e1d2a0d7d62b31f94cb16b2d90a1da10ff12c28b7a3942e44d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rigel-radiant-uglify-js-node-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 85630c33cb4c0ec6a482317d825de7dd864dfc1abf5642f7f91212d8139d7c08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145851 Malicious code in ophiuchus-wasat-winston-levels (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9054d64bfdec4b7199f9f5aae28df4399dbf0746e791e2a667fb447fd6b93d1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141925 Malicious code in electron-pegasus-perseus-slides (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 671af7da2ae010d3996821b6cebc6aeeebef5043d6a5c62b3fe0d51ba287aa07 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-149227 Malicious code in vulcan-concurrently-webdriver-mocha-grunt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 02af8e5f5322a6dd20faee018c741ee859aab71d39ab4c17c10a576073f4f1f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-147068 Malicious code in react-bootstrap-native-rehype-style-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c731557ff748c3b450e7f9a142a04f4182d48cb705f4ec926d465475eb2b7a06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140846 Malicious code in colors-csrf-rollup-prettier-plugin-markdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3babf499c271300aba4371a713b8f0dd82c891ac406c074b37358bb570d29f3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-59145 [email protected] contains malware after npm account takeover
color-name is a JSON with CSS color names. On 8 September 2025, an npm publishing account for color-name was taken over after a phishing attack. Version 2.0.1 was published, functionally identical to the previous patch version, but with a malware payload added attempting to redirect cryptocurrenc...