Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/12 7:18 p.m.3 views

Malicious code in nokire-nakao3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2717eb035b89512bf1a1096556e593af08103d260ed3d2578eb6fe42016a739e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/12 4:29 a.m.2 views

Malicious code in nightwatch-ursa-triton-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2fe6abaf7b95539a87fa51af803b1e73749edcbcf422918007d6ca8e2ff864a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/12 4:29 a.m.1 views

MAL-2025-145270 Malicious code in nashira-config-fork-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 893df40a746a89d4d64ef239e7ba6265dd6d0d5a966591c11ffbd8f4c401280e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 7:16 a.m.2 views

Malicious code in nadia-telur24-ruro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4a9f41e4e1694c8418242576c74d316ea10baf9514e708fa9fd947cdf9b6093 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 5:18 a.m.2 views

Malicious code in misty_salamander_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 053d432b5c4565b86561dff05315527ecf316937acade14964f7e40b0ed094b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Rows per page
Query Builder