Azure Linux 3.0 Security Update: uglify-js (CVE-2022-25858)

The version of uglify-js installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-25858 advisory. - The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial...

EUVD-2025-175852

Malicious code in uglify-js-buffer-exosphere-soap npm...

EUVD-2025-175851

Malicious code in uglify-js-gatsby-mocha-titan npm...

EUVD-2025-121337

Malicious code in testcafe-css-loader-uglify-js-tailwindcss npm...

EUVD-2025-114005

Malicious code in epimetheus-regulus-sass-loader-uglify-js npm...

EUVD-2025-113390

Malicious code in fusion-arcturus-uglify-js-meissa npm...

EUVD-2025-121692

Malicious code in sqlite-npm-uglify-js-airbnb npm...

EUVD-2025-122483

Malicious code in rigel-radiant-uglify-js-node-config npm...

EUVD-2025-121058

Malicious code in uglify-js-dagda-await-parcel npm...

EUVD-2025-121060

Malicious code in uglify-js-chalk-spica-zenith npm...

EUVD-2025-113635

Malicious code in figures-orbit-uglify-js-uglify-js npm...

MAL-2025-148877 Malicious code in uglify-js-pegasus-proxima-superagent (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f0f16606331574b494cba2d3bb53773f1cc5c2e3d2a7e3f0c08d9f8320b23b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-114568

Malicious code in deneb-delphinus-orbit-uglify-js npm...

EUVD-2025-122050

Malicious code in sequelize-nashira-rigel-uglify-js npm...

EUVD-2025-123921

Malicious code in pavo-less-loader-convict-uglify-js npm...

EUVD-2025-121057

Malicious code in uglify-js-despina-quark-graphql npm...

EUVD-2025-114481

Malicious code in development-query-pm2-uglify-js npm...

MAL-2025-148880 Malicious code in uglify-js-quito-ursa-fomalhaut (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aaadc495679e60a19ec8445196bd4b7acb163dfea8b86c1a624c45ecead0fef3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-46090 Malicious code in slides-json-markdown-uglify-js (npm)

The package slides-json-markdown-uglify-js was found to contain malicious code...

Malicious code in paleoclimatology-selenium-neptunology-uglify-js (npm)

The package paleoclimatology-selenium-neptunology-uglify-js was found to contain malicious code...