28993 matches found
MAL-2025-126910 Malicious code in gita-tahu71-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c95ee6a268fb284f58fcf78bbc91a84b14e4a6b764bd7246212f6d5057f8c108 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-130375 Malicious code in superior_boar_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector afa03e31f7d5c4b684df82d93ff019b4af52caacc7c911fa1621e9dce848f3ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-122847 Malicious code in remarkable_fly_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e4ed7fa49d412dd704e133d61fed85ae81bf058ee8003660259255c06119692 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-124060 Malicious code in vida-teh27-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd8a28a117d94b4aec8730cc882f2e019235a8f24d84e39ec35c1ffb67aaffc2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-122725 Malicious code in putri-tempe83-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a08de25ba0575953b0ee57719e58a1e02338c0e86a962cb4e879f7b65ceb0bf8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in lina-gado-gado37-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28933414e32fe2a3465af461f2fba1837d250d1629cfb2edb8a0e46a2201891c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in qori-serimuka23-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d619d051c131eb2399c861de59695f752ad4d81ba36240daf18f25b97b70175c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fajar-liwet67-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa737e6c62c8dcf4fdd142d31743a4e6d9167e290495bd2577d4bf4d2bc1ab32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-123504 Malicious code in tania-getuk100-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66c93eda5b74281b00652edd6b26dbd2c74de6c347e543b0991643246e0b75dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Microsoft Patch Tuesday, November 2025 Security Update Review
Microsoft released its November Patch Tuesday Security Updates. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for November 2025 This month's release addresses 68 vulnerabilities, including five critical and 59 important-severity vulnerabilities. In this month's update...
EUVD-2025-93498
Time-of-check time-of-use race condition for some ACAT before version 3.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable denial of service. This result may potentially...
CVE-2025-59512
Improper access control in Customer Experience Improvement Program CEIP allows an authorized attacker to elevate privileges locally...
EUVD-2025-93445
Improper access control in Customer Experience Improvement Program CEIP allows an authorized attacker to elevate privileges locally...
CVE-2025-59512
Improper access control in Customer Experience Improvement Program CEIP allows an authorized attacker to elevate privileges locally...
CVE-2025-59512 Customer Experience Improvement Program (CEIP) Elevation of Privilege Vulnerability
...
EUVD-2025-84349
Zohocorp ManageEngine Applications Manager versions 178100 and below are vulnerable to authenticated command injection vulnerability due to the improper configuration in the execute program action feature...
Malicious code in excited_wombat_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector deb8f00dd3c0ed798f5a58278ba0558504881697a262f2774e5b52c7ed01d187 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-117558 Malicious code in tuti-mieayam91-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 813f0f132b1d2f8d85eb6502d3ed01f1168e5d38a0951abadd3c0b9216baa512 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-116123 Malicious code in objective_muskox_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ac727489d35b84465b72bb5d9cdbb98f1f1a61d28e93941346627a1f52796a87 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-114356 Malicious code in glamorous_fly_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a4b5ede7f4c149db6b00d0a68d3a81d7f6430953a810e1d17d07739312c50c4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...