95 matches found
Malicious code in irrelevant-plum-impala (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43b46b6c9f07a915d1908cb0462ace9edcb6d55dec50eb1ec23e7affc2827a62 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bold-coral-puffin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a612d47fac5898e781bc5bf60e0d23184f42ab9e4f70e57a053fa6b084dd84e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-65567 Malicious code in thoughtless_marsupial_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb6a745926e4e312737261f1e43194f883d3fb90a1259087caf5da1bf30d9b8f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bambang-pecel91-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1ec406734f2fcefd138c5266ce3dba776827a48dbcee7d4a736e86e24edce89 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-62524 Malicious code in dian-enting64-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 197d8b2bfa8054e36e0910330898425141b92ccdd9c22809fda1fbb5d2f7b5d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-65425 Malicious code in square_whippet_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 191804ae7ec194f5ea4a655005b5d033ba115fbb6cae38acc534c4100f37943e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gita-papeda17-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d392f31aad2efce3f5ed2d491a9288b841786dfd7bd1ce50dc1d0ed9922defc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-55995 Malicious code in eka-saguer66-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10e343102dbb6e434859b92dad21a2f15d5f8baa51bf729fc9caa36a5bb767df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in putri-kue70-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff62173a5ebd40c49614cbcd60c69aedb10f1299812d9797ce141df63ec531b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in qori-gandul32-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8dc52baeae4c6e7ea557afc1687989339f6448ea65491490cd97fd1d4a5137fa This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in vera-mangut39-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b319d8f6aa2e44ef090bafa964306e1126a697173b206ca6a69593537799a3a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-53301 Malicious code in mahesa-mangut53-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d17fd056942c2378f1172112d9414d056840a505510bc37027f78a4a7e59bd78 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2025-11216
Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. Chromium security severity: Low...
Malicious code in post-comment (npm)
--- -= Per source details. Do not edit below this line.=-...
CVE-2024-12053
Type Confusion in V8 in Google Chrome prior to 131.0.6778.108 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...