5 matches found
@jazuli/terakhir558 (=1.1.4), abufda-muyu-bgagfaug (=1.1.0) +4976 more potentially affected by unknown CVE via terakhir558 (=1.1.5)
terakhir558 NPM version =1.1.5 is affected by a known vulnerability. The following packages have a transitive dependency on terakhir558 and may be impacted: - @jazuli/terakhir558 =1.1.4 - abufda-muyu-bgagfaug =1.1.0 - bufa-muyu-bgagfaug =1.1.0 - bufai-muyu-bgagfaug =1.1.0 - bufani-muiyau-fafu...
EUVD-2025-131965
Malicious code in terakhir558 npm...
EUVD-2025-134946
Malicious code in @jazuli/terakhir558 npm...
EUVD-2025-134945
Malicious code in @jazuli/terakhir558 npm...
MAL-2025-181169 Malicious code in terakhir558 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18cab978c82288a1e4c6066b3e8efe6cf576ba0bf244736debf2357add1fbe8b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...