Malicious code in victoria-wallet-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 305ff7c4db9d9046f3637aeb746d2f95c58e1083e6fd8cfecf220f9a20911162 The package victoria-wallet-validator was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199202

Malicious code in victoria-wallet-validator npm...

MAL-2025-191149 Malicious code in victoria-wallet-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 305ff7c4db9d9046f3637aeb746d2f95c58e1083e6fd8cfecf220f9a20911162 The package victoria-wallet-validator was found to contain malicious code. Source: ghsa-malware...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

Malicious code in validator-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83e37a6017e345fd411d1589cfff26c773d65d94f231505eae6ca3a90b448c4a The package validator-node was found to contain malicious code. Source: ghsa-malware d3f7ef04f70e6978a9f771255f136d634d2907c42c7acf71a42c4c93e7e5d333...

EUVD-2025-180552

Malicious code in validator-node npm...

Malicious Package

Overview validator-node is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2025-190498 Malicious code in validator-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83e37a6017e345fd411d1589cfff26c773d65d94f231505eae6ca3a90b448c4a The package validator-node was found to contain malicious code. Source: ghsa-malware d3f7ef04f70e6978a9f771255f136d634d2907c42c7acf71a42c4c93e7e5d333...

CVE-2025-64518

An XML External Entity XXE injection vulnerability was found in the CycloneDX Java core library’s XML validation step where the XML Validator was not configured securely. When a specially crafted CycloneDX BOM XML is validated, external XML entities can be processed XXE, allowing an attacker to...

Linux kernel 安全漏洞

Linux kernel is a product of the Linux Foundation of the United States, etc. Linux kernel is the kernel used by the open-source operating system Linux. aaron update, etc. is a product of the Aaron Individual Developer. update is a library. clickHouse ch, etc. is an open-source product of...

EUVD-2025-81322

Malicious code in lucero-validator-catalyst npm...

EUVD-2025-81359

Malicious code in liza-validator-catalyst npm...

Malicious code in browning-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e53b6ca0946ffd25570964d1f5fd6b960de2cb50654fd0ca6d780ec2e561b466 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in crosby-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 921554aac3d9e84e86caa9873a7dcf0367ea63235fc5818ab5a33be5977a4f58 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in eugene-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 535e75b7366b5df20db6b738d9e76bf0460d42914259468fb8d28c449da59d2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in hicks-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbf18ec8a00e5e7fd788ae4ce79aeeeb94d3e519dc00067043b7505f1cbd393f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kory-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7c3c03e2021a2370261f9859262150cb03e21588d7586234d0851db89eca895 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in kristine-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0cec16c0a04891efad74b1c7fd4598c3024f112300985ac467642b7e15c869e8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in liza-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab78b40fbbb84680fcd8f891474e0b9076a907f2db2873ba69c81a0703839b32 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in lois-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 443a28a34078f1801c9ce7e2fffe41d25f37a5bf9c21f96b251a31b225f99db5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...