13 matches found
MAL-2025-182145 Malicious code in gociay-uinaga-ugu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b60fd7ef19b7ad19a499b6f31e5c6d303e8a579274c473324ef7d3ac0ba8d28 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in manud-nofty-muatu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b57972a37eec9415c9942b2c4971629cede47587efa7bfc588527334caa3d632 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in akabia-aligma-agbva (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf30789041c452c967ff6f4e1207759bd0c58793d8e46237464b5bbbe3ec9853 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in changelog-upgrade-native-phoebe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d985c3ae2349fb80095178ca8c1c3d0e0171ce3f14382f0bb8265bbfd705918e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-135484 Malicious code in marginal_ox_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2012a44e1762a7fb4d0937e2832db8e36c7e56c7bfa742f0376cee090dad7f26 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in joko-nasipecel95-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50437c9a2c378e2dca045c4821ef4fbf0486c98f02b5cfb143c55abcd9adf301 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tomi-kemplang65-miaww (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61ff0ad2c2e966c05adea2d74cc1c49c50ee9d6858fdebe62dc1fa092eed32ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in maman-kupat86-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cede63939b492e6cb0ef9a52fd09a89421a31b402e33ed6042db9765f1292b1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in indirect-aqua-planarian (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1d98bfd6fa87fa82c8fd3ecd24f28c9c5d0b9d495129e869cfdfd7b5a4063ced This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
SA2FE: a Secure, Anonymous, Auditable, and Fair Edge Computing Service Offloading Framework
The inclusion of pervasive computing devices in a democratized edge computing ecosystem can significantly expand the capability and coverage of near-end computing for large-scale applications. However, offloading user tasks to heterogeneous and decentralized edge devices comes with the dual risk ...
Design/Logic Flaw
The json rendering functionality in the Context module 6.x-2.x before 6.x-3.2 and 7.x-3.x before 7.x-3.0 for Drupal uses Drupal's token scheme to restrict access to blocks, which makes it easier for remote authenticated users to guess the access token for a block by leveraging the token from a...
Fedora 20 : drupal6-context-3.3-1.fc20 (2013-21303)
CVE-2013-4445/CVE-2013-4446 Context, a drupal module, which allows you to manage contextual conditions and reactions for different portions of your site, was found to have two severe security issues. First issue is that the module allows execution of PHP code via manipulation of a URL argument in...
Fedora 19 : drupal6-context-3.3-1.fc19 (2013-21231)
CVE-2013-4445/CVE-2013-4446 Context, a drupal module, which allows you to manage contextual conditions and reactions for different portions of your site, was found to have two severe security issues. First issue is that the module allows execution of PHP code via manipulation of a URL argument in...