34 matches found
EUVD-2025-206040
Missing Authorization vulnerability in Nik Melnik Realbig allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Realbig: from n/a through 1.1.3...
Malicious code in moki-nik-hifdaguh (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b679d19d7b211cc0efe72716226d1fdfbe0a4dad326d40191c9acba28c9562d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-184501 Malicious code in moki-nik-hifda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 841015a65836f87ce5ea72f85610a20eb210e7c5a523a9db09ee9b5024fb60ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in moki-nik-hi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92912cbaeaa0b6954ef1e5142231830dcac3e204b0a4d6809c1dfd4e3ae6dba7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in moki-nik-hifda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 841015a65836f87ce5ea72f85610a20eb210e7c5a523a9db09ee9b5024fb60ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in moki-nik-hji (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62ee188d659ad3c564fd6cd258d388db6a0c693ae1a28a9b3387fdbf881a9329 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in moki-nik-hujiklum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d3c819d76b32521541b0caa3295d35bbcaaa9a6574421686612704fc12979bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-184515 Malicious code in moki-nik-hji (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 62ee188d659ad3c564fd6cd258d388db6a0c693ae1a28a9b3387fdbf881a9329 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in abyia-nik-luyai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a969ef669c340c0de9be45a7bafa39c0a14fc93a72937ef952b9b92f7860ba8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-151643 Malicious code in abyia-nik-luyai (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a969ef669c340c0de9be45a7bafa39c0a14fc93a72937ef952b9b92f7860ba8e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2008-1639
Malware in sbrugna...
EUVD-2025-2725
Malicious code in bioql PyPI...
CVE-2025-22325
Cross-Site Request Forgery CSRF vulnerability in nchankov Autocompleter autocompleter allows Stored XSS.This issue affects Autocompleter: from n/a through = 1.3.5.2...
PT-2025-4975 · WordPress · Nik Sudan Wordpress Additional Logins
Name of the Vulnerable Software and Affected Versions: Nik Sudan WordPress Additional Logins versions prior to 1.0.0 Description: The issue is related to improper neutralization of input during web page generation, which allows for reflected Cross-site Scripting XSS. This means that an attacker c...
CVE-2025-22325
Cross-Site Request Forgery CSRF vulnerability in nchankov Autocompleter autocompleter allows Stored XSS.This issue affects Autocompleter: from n/a through = 1.3.5.2...
PT-2025-4440 · Unknown · Nik Chankov Autocompleter
Name of the Vulnerable Software and Affected Versions: Nik Chankov Autocompleter versions 1.3.5.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on ...
mediamarkt.lu Cross Site Scripting vulnerability OBB-3913924
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
nik-ro.com Cross Site Scripting vulnerability OBB-3574370
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
dezeskernen.nl Cross Site Scripting vulnerability OBB-2339514
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
visitportugal.com Cross Site Scripting vulnerability OBB-2193020
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...