37 matches found
EUVD-2025-63063
Malicious code in ministerialhawkz3n npm...
Malicious code in recent_gerbil_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 837a2c910c52d23103860a06cbf459899e50aa4ecbab98abacaf516987d2647c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-73819
Malicious code in screechingsharkz3n npm...
EUVD-2025-64091
Malicious code in favourablebobolinkz3n npm...
EUVD-2025-67316
Malicious code in residentmosquitoz3n npm...
Malicious code in troubled_turkey_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 706d8e84995c442925b40191b209dcb77e6387b75baade41c97541e4b295a47f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-66237 Malicious code in xenial_cuckoo_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c54d94cca1cf21473bdd9976314218d110532211d22bda6def671254fafde9d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in yawning_hamster_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 159284c7eafbf304501cf47bb7a168f46069d25c209a7b0d3fb59260372ca036 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-58645
Malicious code in leadingsheepz3n npm...
MAL-2025-65292 Malicious code in similar_grouse_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b37fb37366bb1a74467aebab29b3fd0ccbb7f51d6370a105c56edf351c485117 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-44841 Malicious code in kaleidoscope_amyqx_0apfl_ripple (npm)
The package kaleidoscopeamyqx0apflripple was found to contain malicious code...
MAL-2025-35284 Malicious code in test-mlw2-ergot-ictic (npm)
The package test-mlw2-ergot-ictic was found to contain malicious code...
Malicious code in prairie_zla5s_v0sns_unicorn (npm)
The package prairiezla5sv0snsunicorn was found to contain malicious code...
Malicious code in driftwood_1bage_pnfbt_xenon (npm)
The package driftwood1bagepnfbtxenon was found to contain malicious code...
MAL-2025-25990 Malicious code in mastercard_ezaccess_for_issuers_api (npm)
The package mastercardezaccessforissuersapi was found to contain malicious code...
Malicious code in os-apps-ui-curvelibrary1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d69bf54e33d46b564e56a260b65d3c9b8d3a7202dfec0feb06e2930c0bc53dce The OpenSSF Package Analysis project identified 'os-apps-ui-curvelibrary1' @ 12.9.9 npm as malicious. It is considered malicious because: - The...
Malicious code in wake_frequency_calculation_software_hot_free__z0no2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c75aae0b60e581e8cbb10c85f8fe1d7c6ab3d5a27fe9d30388d3e991969be987 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...