EUVD-2026-15068

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sequoia 15.7.5, macOS Sonoma 14.8.4, macOS Sonoma 14.8.5, macOS Tahoe 26.3, macOS Tahoe 26.4. An app may be able to access user-sensitive data...

Exploit for CVE-2026-23829

SimoesCTT-mailpit-phase-reconstructor It's a CRLF injection in...

EUVD-2025-176055

Malicious code in tau-mu-good-beta-kappa npm...

EUVD-2025-176059

Malicious code in tau-fork-hot-web-big npm...

EUVD-2025-178936

Malicious code in fast-stack-tau-execute-hash npm...

Malicious code in good-serialize-protected-tau-fast (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d96e8ca90f6efdce57d44d772017ed7d940eb888854d1044f6330ce7ec439930 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in tau-data-grid-minify-function (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51fd667a40b0b62ada505565aab53c39d96f06b26be3e9b5ce274831637ecbcc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189821 Malicious code in tau-psi-theta-process-optimize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d9342e487099f2f733a00877d9ff8e0ab8db3d0f66801c67047de7d9889cdb6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176830

Malicious code in quick-orchestrate-resolve-cat-tau npm...

EUVD-2025-176061

Malicious code in tau-data-grid-minify-function npm...

EUVD-2025-176054

Malicious code in tau-psi-theta-process-optimize npm...

EUVD-2025-179319

Malicious code in deserialize-double-simulate-interpret-tau npm...

EUVD-2025-180318

Malicious code in array-simple-water-tau-book npm...

Malicious code in tau-fork-hot-web-big (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b1535674fe21c755cbdb872d3615e3794dce7ac1ab4df9d0b4982a0903171a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176058

Malicious code in tau-import-file-bad-byte npm...

EUVD-2025-178376

Malicious code in integer-tau-chi-alert-gamma npm...

EUVD-2025-180076

Malicious code in big-tau-stack-root-compress npm...

EUVD-2025-176057

Malicious code in tau-import-float-monitor-finally npm...

EUVD-2025-179619

Malicious code in compress-tau-enum-book-serialize npm...

EUVD-2025-179112

Malicious code in enum-small-tau-sun-orchestrate npm...