Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/13 3:23 a.m.3 views

Malicious code in hawkingradiation-mensa-dotenv-parse-variables-inquirer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58ee4465c470511ca5e9eeddfdda3cbd2e91351b7d6be3534042756782073a5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/12 4:47 p.m.1 views

MAL-2025-158098 Malicious code in lina-poke17 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ec6e362d18894c2a676d5895649508c7ec31a8b3b7bd0dfc887b55c5f08d2c3c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/12 4:47 p.m.1 views

MAL-2025-163515 Malicious code in nokire-zabuza27 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c67ec0243550dc84a8c6e5486c1687f894b506b4ef3109fa7b92f3d97872cbed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/12 4:29 a.m.1 views

MAL-2025-140168 Malicious code in buffer-phenomic-miranda-taurus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 797d2e82ce63670112679026f7d3cac4b6e5ca661260cd094fd9a863dfa5e963 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/11 3:48 a.m.1 views

MAL-2025-81869 Malicious code in umi-getuk82-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17106970e1cd602fc52e0be62abadaa212ed32603de6a4fa40c253bedbf82937 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/11 2:29 a.m.1 views

MAL-2025-72916 Malicious code in fauzi-bakwan7-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fe2642ea0a848117879a0d29106ff1b148b111e699d3b4b44d4f573d95a6f6c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder