28884 matches found
Malicious code in perseus-semantic-ui-publish-local (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b71fb1de6b922a4162887d97be7ff4e0e59a478a124163c67f61a729dd21dade This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dagda-jabbah-xenos-dactyl (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4678aea84d3e17daf26a71a1227863e69cfc430bb5d394a840da880b8ae787a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-141275 Malicious code in cross-env-umbriel-pyxis-nashira (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c7db902ee42dec10db64f6cd600074b6ceff82d76ba90373dce81b04e3ba617 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in prettier-plugin-markdown-mira-rollup-plugin-slides (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c59df9e16b1d88777561b0576f22280225530cc5984f4353928fdfe3d86100d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cassini-hexo-buffer-altair (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 060271c2db1d4a1038098a84e59d8e87c5b7e3fbbbc7aed1148d0a49196c04c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144139 Malicious code in kaus-cluster-superagent-slidev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e520fa894f85dcf5047f8f11da6df83734d4f0e4807024182938c2148739a349 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139786 Malicious code in avior-solis-grus-run-script (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7e1bdfdc7bb97c3e6f4552241ddd6ae1a7be05ef2b820b1547391c9765a70c08 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-144706 Malicious code in markdown-pdf-restart-scripts-yaml (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a9f3e2a159afb43d6be262f04344aa545c34ee9ffaac9abbed05a6f0c951a763 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jsonp-nightmare-leda-rollup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3fbe40f02d657a7917d90b09bc7249a176e5ee2697ec8b356d4d57be89d66fc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-139022 Malicious code in spare-chocolate-gull (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65a627c45b9b21cff9b80758c834e1de92978da4843201f45e2f092cf4d86227 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the BPF validator not properly rejecting negative offsets in ALU operations, which could lead to the execution o...
Linux Distros Unpatched Vulnerability : CVE-2025-40123
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: Enforce expectedattachtype for tailcall compatibility Yinhao et al. recently reported: Our fuzzer tool discovered an uninitialized pointer issue in the...
Apache OpenOffice 安全漏洞
Apache OpenOffice is an open source office software suite from the American Apache Apache Foundation. Apache OpenOffice suffers from an out-of-bounds write vulnerability that originates from out-of-bounds writes to memory buffers, which can be exploited by a remote attacker to crash the program...
Malicious code in candra-saguer25-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 628773827b66e14ae8b061a2e8b2150f6580cd302733b3b0daa7efb04d0c170d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-134311 Malicious code in indah-mendoan90-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6f992c4234eceb6baf7e477c83c2f1a6dd5ed2ed4bfc700309bc6cc68e8d27a8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in inappropriate_snake_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e61fb913d5c158ad68befa6548fab7783e4b8763e63d3a3fc764fb4449fd9a0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in oral_alligator_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58b4066d842371678c1c4455b78bae84beeb0ebd09d63807f686819687db8bff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-136350 Malicious code in putra-telurtahu23-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e907eda7b39fc04bcf1d4983933bccb732162857310e3c7c71b105a5672d5323 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-138029 Malicious code in wibowo-gembus53-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4c4bc771a2d8415b32641572031b5c96664022d9dd1865669270fdc74a1af98f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-136278 Malicious code in probable_earwig_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6a04928ba604442ee7f560941fb5e5594de06faccc1b6d33d1ac45747c131ca3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...