9473 matches found
EUVD-2025-77990
Malicious code in variablellamaz3n npm...
Malicious code in variable_harrier_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41c37f01830d5a5fb385de9393cb00a756b25c8d5af979a89e6c2ea31248b45e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-80142
Malicious code in variableharrier0xrequest npm...
EUVD-2025-80143
Malicious code in variablealligator0xrequest npm...
EUVD-2025-80140
Malicious code in variablestingrayreplicateautomation npm...
Malicious code in variable_porpoise_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bf10dd9c18bcb2d6983fa05b87b77092ba6aa0d3921e11046323cec922c039b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-65594
Malicious code in variableporpoisez3n npm...
MAL-2025-86096 Malicious code in great_felidae_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 975251481db80a9c72c860e7202fed5576f556e2ad750dc551fd74285a7812e0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-82019 Malicious code in variable_spoonbill_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 765df721f21736f8e96171505f172d6ad289ae1b51fef12191c963dd334187e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-51244
Malicious code in variable-rose-gopher npm...
EUVD-2025-51248
Malicious code in variable-aquamarine-ptarmigan npm...
EUVD-2025-51246
Malicious code in variable-chocolate-cat npm...
EUVD-2025-51247
Malicious code in variable-blush-trout npm...
MAL-2025-71404 Malicious code in variable-chocolate-puma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3dc5c87e44fa0ef20264749544b88c160bf3b4693fbf25a951b992f44755fce3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in variable-chocolate-cat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd7b0fd9e3f50e752b35cfce7a47ce377dc128160dffb348b2c38d46abee17c2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-51245
Malicious code in variable-chocolate-puma npm...
EUVD-2025-56770
Malicious code in variableaphidz3n npm...
Use of Uninitialized Variable
Overview Affected versions of this package are vulnerable to Use of Uninitialized Variable via the genericunpack function. An attacker can trigger undefined behavior or cause a crash by providing specially crafted input that leads to the use of uninitialized memory. PoC The archive includes the...
Use of Uninitialized Variable
Overview OpenEXR is a Python bindings for the OpenEXR image file format Affected versions of this package are vulnerable to Use of Uninitialized Variable via the genericunpack function. An attacker can trigger undefined behavior or cause a crash by providing specially crafted input that leads to...
EUVD-2025-49104
Malicious code in variablesolez3n npm...