Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/12 4:47 p.m.2 views

Malicious code in masako-b-lisa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0f765ae98ea33e70b51a5a92f6e8c0b6f1292c1671739c78b147ad047ad2df7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/12 4:29 a.m.2 views

Malicious code in puppeteer-polaris-rollup-plugin-quantum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e91d21a5dc53bc564d43fa8a35261a81ba823c57bd5edb97d48a0e60b3f8d082 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/12 4:29 a.m.1 views

MAL-2025-143356 Malicious code in html-webpack-plugin-astro-blitz-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6dd60d4c15ba4743a5534b1eb8ea3d9e85b07a6b0c815b5ad417301435de30ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/12 4:29 a.m.1 views

MAL-2025-146046 Malicious code in pegasus-publish-mongoose-dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ceca5bf5ad3eeb9dc535efb9f2ed64bca85aa519539a639405784791be1baae This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/11 7:31 a.m.1 views

MAL-2025-109449 Malicious code in tall_raccoon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9534e70f0025b0906941833862f533079359ce257e4648927646cb5b0266051 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/11 7:26 a.m.1 views

MAL-2025-110068 Malicious code in underwood-validator-catalyst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 435645f35b580c4eb180f2e208551b6febb35ae5ffe9d5fad2d5f1039637cd0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 4:25 a.m.2 views

Malicious code in putri-lontong44-wekto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a25ff41db064c6675456f794d30b3f93ff8a152fa05ce5be77d47e10bd75b0f5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Rows per page
Query Builder