Lucene search
+L

58 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Firefox

When downloading an update for an addon, the version of the downloaded addon update was not verified to match the version selected from the manifest. If the manifest had been tampered with on the server, an attacker could trick the browser into downgrading the addon to a previous version. This...

6.5CVSS6.8AI score0.00248EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/24 12:0 a.m.18 views

EUVD-2025-198966

Xtooltech Xtool AnyScan Android Application 4.40.40 and prior uses a hardcoded cryptographic key and IV to decrypt update metadata. The key is stored as a static value within the application's code. An attacker with the ability to intercept network traffic can use this hardcoded key to decrypt,...

4.6CVSS6.3AI score0.00167EPSS
Exploits1References3
OSV
OSV
added 2025/11/13 3:23 a.m.2 views

MAL-2025-187516 Malicious code in interstellarmedium-nightwatch-bionics-xanadu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95c3950e00a83cd6023444b37bc9fbf0afcea3d67a13c01a62c8fe4212ea7563 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 10:25 p.m.4 views

Malicious code in hitale-irhar-aaeasdeadeasdeef (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c92b46f38a064310333b9a20e02b6218eba40d4058d164c829cc8cfd23b261d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 10:25 p.m.2 views

MAL-2025-184581 Malicious code in odasv-kinu-bobacuvolaafin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe474ec2c4f1d899d1aa5123c00c507b753969042c996d06b9e2ba433f266a06 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 7:18 p.m.3 views

Malicious code in alvino-40 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1410a8a98d25535da896ed21562b0a225a5de0d6571fc5c66f21493eced9be2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 7:18 p.m.3 views

MAL-2025-178296 Malicious code in riya-17 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bae8ecf4a1c7b89f037093ccfcf1272c76eccc6f121b74716149f3d57158413f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.3 views

Malicious code in teagood-nakamala27 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9f9166bcc06273b78753b1b3a8ba28b7cca4c1f826ac0f5c94525c960709763 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.3 views

Malicious code in mansioda-nona-mung (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8460c166058399c4923a48d63dd7c6c8836c6455f702f0c7c9994730a53c4f09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.3 views

Malicious code in aiboa-mioloipe-agati (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 94c044ecfad97a2bdf8f3e08ac99cca1eea209249a9cfb5291bde0120f17ba5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.1 views

MAL-2025-149909 Malicious code in @miftaikyy/roya (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08094f72381f0882e2c1cef39d0844cd4e6832e84df61c7d9b62f96934f81392 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.3 views

MAL-2025-157131 Malicious code in jurss-a1rea-as (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dd07db606223407df84b520328abf15563c909bf949d831d573b526c91a32e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.2 views

MAL-2025-161118 Malicious code in mutdaufs-marimasa-ay (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fd07c6652f06dd9c89c899b43317e0254b06e43dacfdcf59b0fcf0b9cda4f84 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.1 views

MAL-2025-165704 Malicious code in salabunuli-nalikia-lusbi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f570a7a1d8b8cb1c87feb95479e476292c57e8decd76f83f330d36d1818cc49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.1 views

MAL-2025-150231 Malicious code in @mipta1/sdsffa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86c3762fca0ca7d9c5ccbd4837efe88b6b6cbbb75f1555b0ab4e76428a320927 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.2 views

MAL-2025-163997 Malicious code in parwo-poke27 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 93f5f5fea18631b5fdafb0c955cd33dc0939f8d8193a904a5732bcd80123c357 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:29 a.m.3 views

Malicious code in node-sass-gacrux-venus-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eac146f9fa66bd3b7933e6bd605cac605da91e1f8367be1ef65777d7ebaec84b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 4:29 a.m.1 views

MAL-2025-147222 Malicious code in release-it-eslint-nodejs-titan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d444f73fff49c045d0be36d158676f122863a24f8391209244c38f04cdf90bb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 4:29 a.m.6 views

MAL-2025-141224 Malicious code in cressida-bootstrap-draco-gatsby (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4026d3b059ea83042ac7c4e417f310271161680afdec2181530d17ebbd4f8825 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/12 4:29 a.m.2 views

MAL-2025-144731 Malicious code in markdownlint-start-materialize-ceres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5b86e7289af41e3713ee478fd25844f6004df8c4ad8c5ecdc276dcd607a7588 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder