CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-124409

Malicious code in node-config-juno-install-iota npm...

OSV•added 2025/11/12 4:29 a.m.•0 views

MAL-2025-142489 Malicious code in firebase-charon-node-config-delphinus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8b995051a7142a276f04ec88281667d77e5e1ef909b5dc5770fe7f2d136fe09 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-141525 Malicious code in delphinus-node-config-equinox-aquarius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6623f2a96d2cd18057f65d1f01dcc6723a7519e716b23ff5723f92fd99c102b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-142426 Malicious code in farout-sync-regulus-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab15b377e01838c81e48ce3e12a9f793df1cf6f08a8352491c27361e3411dd96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

EUVD-2025-111702

Malicious code in link-kinetic-phenomic-node-config npm...

EUVD•added 2025/11/12 4:29 a.m.•3 views

EUVD-2025-111194

Malicious code in meteor-node-config-hugo-fomalhaut npm...

EUVD-2025-112378

Malicious code in iota-node-config-nconf-zenith npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•4 views

Malicious code in dependencies-hugo-phenomic-node-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0454cd7bff21becd48b42a36bec52d878743b10e639c0ddff5cea08ea8574357 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•5 views

Malicious code in ignite-callback-node-config-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8894545ee7492ce0676852567fe5d3d6b2139f08799c38602766a6a8f7f91fb1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in node-config-aquarius-selenium-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37e5c2af9e703d23e07f831f6ce27c38ee3fc7977eb88fccce182c8f6d1b82b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in node-config-ariel-cosmiconfig-grus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8511e6c9da4678fdbcc5910ed10531ec1bf199ca08705ff5cc0ffc8eacc6f05f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in node-config-gatsby-terser-antares (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 514c4395cec647ca12feacfcacdd7e1eb406be1f56351267a9f1f798a8f10ae5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•5 views

Malicious code in node-config-sadr-node-sass-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7a9531f78b9c6d8ced2fbe159fa6b011866cef7d09a1509b8ae0f2ffbf42f0a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in nodemon-node-config-writable-ceres (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57a645b9fd9876fc339f13eaa5d63fc1e9f3c191f707405651a572c7a8da38a5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in process-spinner-node-config-meteor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10975cf9d208a454c4ec8cf4c7efbfe081c6fb8ff9695c78c35d806391226c26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114037

Malicious code in envconfig-eleventy-node-config-hyperion npm...

EUVD-2025-124398

Malicious code in node-config-vuetify-less-loader-version npm...