7 matches found
MAL-2025-169134 Malicious code in toyota-cir14 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0b02fdeb7cb4026053561adcebe25dff5d3fb094c7ff95e753946d33d5bae10 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-109613 Malicious code in thirsty_earwig-toolteadev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9fc8ae798df01b122510998abf0bce4e723537ae75e7a18cc35318c21d67826e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-93704 Malicious code in concerned_possum_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8bcbd75e8d901abf7d2414480a13f59b80708bc873a5c872c457a3d7695203d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-92326 Malicious code in worthwhile_kite_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45e882f70e77109e2830f30efa26fc07185caa87921755c15d73cf97a959ecd4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-76975 Malicious code in bayu-bakso44-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ca8e85c925ed43a18d50cf36091c0fe816311be98d7e441b037aac8d5bffa18 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in striped_piranha_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc03d17cd7c0a12707ae2c3d9fa17c80730be545f34de3c7e69e7af62c799644 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
GHSA-X469-CV7M-77R9 .NET Remote Code Execution Vulnerability
Microsoft Security Advisory CVE-2023-33128: .NET Remote Code Execution Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 7.0. This advisory also provides guidance on what developers can do to update their application...