Malicious Package

Overview auth0-templates-scripts-utils is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

MAL-2026-4276 Malicious code in build-scripts-utils (npm)

Ten packages published by npm user asdxzxc at version 1.0.10 target developers working on AI and LLM tooling. Each package masquerades as a developer utility while executing a two-stage payload triggered via postinstall: package.json → lib/setup.js → lib/worker.js. Credential harvesting:...

auth0-templates-scripts (=80.0.4) potentially affected by unknown CVE via auth0-templates-scripts-utils (=1.0.5)

auth0-templates-scripts-utils NPM version =1.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on auth0-templates-scripts-utils and may be impacted: - auth0-templates-scripts =80.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4490...

CVE-2021-23277

Eaton Intelligent Power Manager IPM prior to 1.69 is vulnerable to unauthenticated eval injection vulnerability. The software does not neutralize code syntax from users before using in the dynamic evaluation call in loadUserFile function under scripts/libs/utils.js. Successful exploitation can...