CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in tailwindcss-slidev-antd-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0be2c69fad5b110b2dbeeea015fbe299ab9aa61c3feaa29d68a296c5fbf22be This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD•added 2025/11/12 4:29 a.m.•2 views

EUVD-2025-124387

Malicious code in node-sass-duplex-tailwindcss-dione npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in cross-env-tailwindcss-got-corvus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfebaf96f22fd8860a88ac0184b73b01ba60142ae6ef17a441f56736de49ec77 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD•added 2025/11/12 4:29 a.m.•2 views

EUVD-2025-112449

Malicious code in inquirer-tailwindcss-sqlite-sirius npm...

MAL-2025-141191 Malicious code in cosmiconfig-nextjs-tailwindcss-polaris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6cb61a59a4c5387bf62fb5b1b0c1e546a26f65fc5263ca200c39bad00b2c76c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148455 Malicious code in tailwindcss-slidev-antd-elara (npm)

MAL-2025-148456 Malicious code in tailwindcss-style-loader-corvus-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 360dda3cbdf0ad64d11cf806ebe3a954d387a100ad64aff35dfb9ca17fcb04b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-148450 Malicious code in tailwindcss-playwright-lacerta-hapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1208ff45dd006a097793072c093d443a2de50d88981ecb93b4111e96b46ba2c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-113574

Malicious code in fomalhaut-dynamo-luna-tailwindcss npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-116390

Malicious code in aurora-tailwindcss-nodejs-lynx npm...