EUVD-2025-89489

Malicious code in persistentswordfishz3n npm...

CVE-2025-11085

A security issue exists within DataMosaix™ Private Cloud allowing for Persistent XSS. This vulnerability can result in the execution of malicious JavaScript, allowing for account takeover, credential theft, or redirection to a malicious website...

kernel: ring-buffer: Validate the persistent meta data subbuf array

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Validate the persistent meta data subbuf array The meta data for a mapped ring buffer contains an array of indexes of all the subbuffers. The first entry is the reader page, and the rest of the entries lay out the...

EUVD-2025-74369

Malicious code in persistentmothblush-42 npm...

EUVD-2025-76038

Malicious code in persistentmole-notthedev npm...

EUVD-2025-76037

Malicious code in persistentmule-apptea npm...

EUVD-2025-62676

Malicious code in persistentnewtz3n npm...

EUVD-2025-67793

Malicious code in persistentorcaz3n npm...

EUVD-2025-52775

Malicious code in persistent-tan-herring npm...

EUVD-2025-52779

Malicious code in persistent-beige-stingray npm...

MAL-2025-69871 Malicious code in persistent-copper-eel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d89f89bc38576e1ef521540c2bcb734bc0e92457c2ae0e485624e5b2d7a1a41 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-52777

Malicious code in persistent-copper-wombat npm...

EUVD-2025-52776

Malicious code in persistent-orange-finch npm...

Malicious code in persistent-white-jay (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9443d1136148155802d5fcdad0fac7678a03c4cca7c360900cd41737b7416bb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in persistent-copper-wombat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a35835de5af4134ea4c67d8d02888cd8da6b7c4356444e28b497c1a698a554c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-69875 Malicious code in persistent-white-jay (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9443d1136148155802d5fcdad0fac7678a03c4cca7c360900cd41737b7416bb7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-52778

Malicious code in persistent-copper-eel npm...

EUVD-2025-52774

Malicious code in persistent-white-jay npm...

SUSE CVE-2025-64433

KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.5.3 and 1.6.1, a vulnerability was discovered that allows a VM to read arbitrary files from the virt-launcher pod's file system. This issue stems from improper symlink handling when mounting PVC disks into a VM...

EUVD-2025-49644

Malicious code in persistentratz3n npm...