CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-178510

Malicious code in html-webpack-plugin-atlas-global-lacerta npm...

EUVD-2025-177418

Malicious code in orbit-css-minimizer-webpack-plugin-paleontology-centaurus npm...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-187815 Malicious code in lint-staged-lint-staged-auth-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03253bd76fedc24d55504b970d032ee47ad508a341ba8a5531490b0b9ae15ee3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190289 Malicious code in webpack-exec-adonis-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 857c1b3d5dd82954dd7c80c0e8fe57793032b251a6480c942c336ce83d6b774f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189875 Malicious code in terser-webpack-plugin-nestjs-umbriel-cluster (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce5383d1d73e04c37c0a2d6b250a999810d40f5479e51250c1e31ccd8bde1485 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187030 Malicious code in fornax-janus-fusion-css-minimizer-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b0fb880a3bfb6b4d32d650b9778f2bab22b66cda0b72f0639a80bccf3fcd8cf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186074 Malicious code in ceres-redis-umbra-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0c562522cf6b72f448c78de70d7ff9552bde4eb19fa9ebfb50cab599b1bf80c9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188465 Malicious code in orbit-html-webpack-plugin-xml-docusaurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08fb8c907f7e235373242f869cd54f573229f75943e3b713df6ab822fa2142e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-185824 Malicious code in biomimicry-epigenetics-rimraf-html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b99d6b16ce5f9ad8a4b63643f29ff2a163289920ad64bab9677fc22fda67ddb0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-178503

Malicious code in html-webpack-plugin-version-vulcan-rollup npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in optimize-css-assets-webpack-plugin-style-loader-bellatrix-prettier-stylelint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abc399df1baa583fe9c5b3c3d19473cebd1498ab6c0de46cdc1ef484368df6c3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-178483

Malicious code in hydra-helmet-terser-webpack-plugin-ignite npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-177770

Malicious code in mongoose-css-minimizer-webpack-plugin-spectroscopy-aquarius npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•2 views

Malicious code in terser-webpack-plugin-centaurus-version-duplex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3c5c34ad44ac941803db664d6a785fac2fd342500558c1c26e98ba07c786178 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-179354

Malicious code in delphinus-passport-blazar-css-minimizer-webpack-plugin npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-179129

Malicious code in enif-terser-webpack-plugin-sass-loader-spectron-webdriver npm...