4309 matches found
EUVD-2025-115844
Malicious code in cache-aquarius-nodejs-middleware npm...
EUVD-2025-120634
Malicious code in wasat-mui-sadr-nodejs npm...
Malicious code in zenith-polaris-warp-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1ce5d07c12870a3c118a4ad89de58f1274582f8f89ea161afda22f2f8f4faee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in nodejs-metalsmith-kinetic-tool (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 878d6af5f0a46610edc9311c111f32eee574f8f65046961c73337c1f01e83e08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-113468
Malicious code in fornax-polaris-nodejs-ignite npm...
Malicious code in leda-async-nodejs-izar (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 919099f39c4c627753c0eacb2c31a393a6a92e02b8a16c383406fc50a41281d9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in convict-query-nodejs-prettier (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 947879ab9208e82054fd505807da031763a35a0ff420bdf7e46e98c33eec225d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in phenomic-json-nodejs-configstore (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84e01dead8d8853b5795ad6a7c6064b9c62e43df2d92bce5cd0c4644461caa69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-116546
Malicious code in aquarius-venus-nodejs-soap npm...
Malicious code in nodejs-relay-rest-deneb (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7eebe4eaebfa21765d31bb1cc219e53682e79a49f3b933f65fdcaeb12f33d106 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145569 Malicious code in nodejs-javascript-winston-aether (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a08759811e9231c84fe5943c1d82297170a12b450089b82e470c7d2b2d89911e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-145971 Malicious code in parcel-sedna-react-bootstrap-nodejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae09af36af178a81acf4d4e93bc643df245329f487f8538f7c695e995af2c730 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144282 Malicious code in leda-nodejs-nextjs-sirius (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8488e7f3eb1b0a423523519eca85887ecd6c04e408dbec4c05e2e936659200fd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-111524
Malicious code in lynx-dotenv-safe-nodejs-json npm...
EUVD-2025-115145
Malicious code in commitlint-config-angular-ganymede-nodejs-mysql npm...
EUVD-2025-123785
Malicious code in phenomic-json-nodejs-configstore npm...
EUVD-2025-124347
Malicious code in nodejs-proxima-link-prettier npm...
EUVD-2025-122418
Malicious code in rollup-nightmare-nodejs-terser-webpack-plugin npm...
Malicious code in upgrade-selenium-nodejs-lyra (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c05fac68d2ae84d2d004354b5f094461e364e0f684064354fb8cd27ba37ae1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-124361
Malicious code in nodejs-cygnus-sync-markdown-pdf npm...