CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-177011

Malicious code in promise-umbra-css-loader-postcss-loader npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•5 views

Malicious code in miranda-postcss-blitz-module (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ea79ab04fc3a6ac4cbf5514fff31c3ed5fba441933ff5d9a861ea695d6fed4eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD•added 2025/11/13 3:23 a.m.•3 views

EUVD-2025-177095

Malicious code in postcss-loader-hapi-publish-event npm...

EUVD-2025-176493

Malicious code in scorpius-vulcan-postcss-loader-centauri npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-178118

Malicious code in levels-await-postcss-comet npm...

EUVD-2025-177089

Malicious code in postcss-proxima-eris-restart npm...

EUVD-2025-177119

Malicious code in pm2-development-postcss-callback npm...

EUVD-2025-180283

Malicious code in astrometry-postcss-loader-mineralogy-uninstall npm...

EUVD-2025-177843

Malicious code in middleware-exec-callisto-postcss-loader npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in puppeteer-tailwindcss-karma-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d9679267623f6c6b49f81c8f19e9f271e992336207668f965e6348a4c9bbf98 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-175577

Malicious code in weywot-astrobiology-biomimicry-postcss npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in postcss-loader-oscillation-supervisor-stratigraphy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24c4ee8a47b6f72647c164486538c1d1765edb3e08b84f85ff8f0e12991b0634 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

OSV•added 2025/11/13 3:23 a.m.•3 views

MAL-2025-187368 Malicious code in holography-hercules-janus-postcss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc0747bbcd6e1cb7fbbcd0dc7b214cd578ce9437437d5ff92c3122cd217d7f36 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-188779 Malicious code in postcss-loader-ganymede-metalsmith-farout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16d3d14c13f394da725b8d17c124c9aa3305c6a8dff021d59ab3c8fcc8fb610c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

EUVD-2025-178274

Malicious code in jest-titan-postcss-loader-galaxy npm...

OSV•added 2025/11/13 3:23 a.m.•3 views

MAL-2025-186526 Malicious code in delphinus-miranda-postcss-loader-chariklo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd0bdf76910544de6f7f52a3893e80a33923959859d77b7bb710fdc4a41378e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

EUVD-2025-178184

Malicious code in koa-callback-postcss-loader-webdriver-manager npm...

EUVD-2025-179677

Malicious code in colors-nightwatch-antimatter-postcss-loader npm...