Malicious code in oauth-gatsby-titan-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95122c10877f12bad936946a3f7eb7211935cd5647639dbae9dd654ce2166a10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-45212 Malicious code in module-xenos-install-oauth (npm)

The package module-xenos-install-oauth was found to contain malicious code...

MAL-2025-6103 Malicious code in login-oauth (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in io.github.leetcrunch:scribejava-core (Maven)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 8dd884cda209e50c2bd5185172f3c25968cb972cbd19234779b43f4f855f2d26 A malicious Maven Java package a typosquatting a legitimate OAuth Maven package. The malicious package collects and exfils OAuth credentia...

MAL-2025-1887 Malicious code in meli-oauth (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in iberia-oauth (npm)

--- -= Per source details. Do not edit below this line.=-...

CVE-2025-22376

In Net::OAuth::Client in the Net::OAuth package before 0.29 for Perl, the default nonce is a 32-bit integer generated from the built-in rand function, which is not cryptographically strong...

CVE-2025-22376

Net::OAuth::Client in the Perl Net::OAuth package before 0.29 uses a 32-bit nonce generated from rand(), not cryptographically strong, risking nonce predictability in OAuth flows. Affected: Perl Net-OAuth

Malicious code in my-oauth (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a9a2c5c46b8e8654ac9432c80b3ce72083cda20ffada8ef7098636fd56eae3b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...