8 matches found
Serendipity 安全漏洞
Serendipity is a PHP-based blog system developed by the Serendipity team. This system supports the creation of online diaries, blogs, and web pages. Versions of Serendipity 2.6-beta2 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the email sending feature not...
MAL-2025-184896 Malicious code in sonic-jos-afafiofiah (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d04ba84020d9dfc8509e469969615a44d0136b85bf9318cd208335202bbf0ca2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-181407 Malicious code in baso5 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c04a9237f85fe2bf4a8b6fcb2ff46969bc4f164bf850137ffe3324ced69f4a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-172900 Malicious code in anidata-hadis-mamabadi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc88320297c0b60df70d3aa7f76c37f57c1016264c32c378f60e4b6f970d6607 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-140259 Malicious code in bunyan-vuetify-apex-subscription (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1a8d46cff109bf2f2709cdfa691b1c0f42309b1a882f34f95bbbb32fbe05844 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-124428 Malicious code in yanti-empal20-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4929c8069fe9d857874bf46b4bd4cc20fb80cbea252fd76b32f7d2ca192a21e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-86787 Malicious code in irma-kolak6-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d780efc26a82d7278d04205d8b555c51f9f0a58478c4211c555df6e95d661a9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in meaningful-tan-cow (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c863f13c59d30ddac1b03cb3b006c53bb6975cf73f037a0b70b7d116eb33b765 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...