19 matches found
MAL-2025-165767 Malicious code in sau-naki-iup (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90cd9017b1d3d8375e41fe1f46e05855e634c7f319766ca842a0ded9d6eb2a44 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in very-copper-marmot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6ad46de82c1061354c3d4eb5c5af6eca98a158775db15f8ff4193b00523311e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2010-0011
Malware in sbrugna...
Malicious code in pino-pretty-flare-zephyr-sirius (npm)
The package pino-pretty-flare-zephyr-sirius was found to contain malicious code...
Malicious code in ava-ilable-down-load-mp3-today-15541-troubled-shaken-etc-0oakd-xtjnkz (npm)
The package ava-ilable-down-load-mp3-today-15541-troubled-shaken-etc-0oakd-xtjnkz was found to contain malicious code...
Malicious code in mp3-do-wnload-file-to-day-take-them-on-on-your-own-hrfix-cczgww (npm)
The package mp3-do-wnload-file-to-day-take-them-on-on-your-own-hrfix-cczgww was found to contain malicious code...
Malicious code in prairie_jdjve_izhuv_fern (npm)
The package prairiejdjveizhuvfern was found to contain malicious code...
Malicious code in await-pavo-glaciology-axios (npm)
The package await-pavo-glaciology-axios was found to contain malicious code...
Malicious code in test-mlw2-mauls-chewy (npm)
The package test-mlw2-mauls-chewy was found to contain malicious code...
Malicious code in juhuwai (npm)
The package juhuwai was found to contain malicious code...
MAL-2025-22515 Malicious code in homematic-js-km200 (npm)
The package homematic-js-km200 was found to contain malicious code...
Malicious code in eslint-plugin-no-unsafe (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 999dd9620607592cd0a534cc111ac3e92a38fbedf03d3921d0f975b3482fb49c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MoinMoin has improper default configuration
The default configuration of cfg.packagepagesactionsexcluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors...
GHSA-5JJR-GMQ3-F986 MoinMoin has improper default configuration
The default configuration of cfg.packagepagesactionsexcluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors...
MoinMoin Wiki 'cfg' Package Configuration Unspecified Vulnerability
MoinMoin Wiki is prone to unspecified vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:moinmo:moinmoin";...
Default configuration
The default configuration of cfg.packagepagesactionsexcluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors...
CVE-2010-0717
Affected software: MoinMoin prior to version 1.8.7. Issue: The default configuration of cfg.packagepages_actions_excluded does not prevent unsafe package actions, enabling an unspecified impact/attack vector. Several related advisories reference CVE-2010-0717. Impact (stated): Unspecified in init...
CVE-2010-0717
The default configuration of cfg.packagepagesactionsexcluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors...
CVE-2010-0717
The default configuration of cfg.packagepagesactionsexcluded in MoinMoin before 1.8.7 does not prevent unsafe package actions, which has unspecified impact and attack vectors...