Lucene search
K

40 matches found

Snyk
Snyk
added 2025/10/02 2:22 p.m.2 views

Malicious Package

Overview lovable-react is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/09/29 2:1 a.m.3 views

MAL-2025-47833 Malicious code in react-lovable (npm)

The package react-lovable was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c792d58d6efcc096647d6997590af53728e09a15a04d0a88839966aba1271f9b Any computer that has this package installed or running should be considered fully...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/29 2:1 a.m.4 views

Malicious code in react-lovable (npm)

The package react-lovable was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c792d58d6efcc096647d6997590af53728e09a15a04d0a88839966aba1271f9b Any computer that has this package installed or running should be considered fully...

6.9AI score
Exploits0References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/09/19 12:0 a.m.4 views

How AI-Native Development Platforms Enable Fake Captcha Pages

Cybercriminals are abusing AI-native platforms like Vercel, Netlify, and Lovable to host fake captcha pages that deceive users, bypass detection, and drive phishing campaigns...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/15 1:45 a.m.3 views

Malicious code in lovable-cookies-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f2866fddcd00a7e51784a043c672960b21264ee2449d71b72d5382f7ab14050b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Snyk
Snyk
added 2025/09/15 1:45 a.m.1 views

Malicious Package

Overview lovable-cookies-logger is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/09/15 1:45 a.m.1 views

MAL-2025-47188 Malicious code in lovable-cookies-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f2866fddcd00a7e51784a043c672960b21264ee2449d71b72d5382f7ab14050b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/11 1:30 p.m.4 views

Malicious code in lovable-ci (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 383c94c307a9e3918b3e8a1296016307e7d4379f743893becd41721604736176 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/09/11 1:30 p.m.3 views

MAL-2025-47075 Malicious code in lovable-ci (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 383c94c307a9e3918b3e8a1296016307e7d4379f743893becd41721604736176 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 4:38 p.m.5 views

Malicious code in lovable-cookie-logger (npm)

The package lovable-cookie-logger was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 4:38 p.m.2 views

MAL-2025-45068 Malicious code in lovable-cookie-logger (npm)

The package lovable-cookie-logger was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/29 6:55 p.m.2 views

Malicious code in lovable-logger (npm)

The package lovable-logger was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/29 6:55 p.m.2 views

Malicious code in lovable-loggers (npm)

The package lovable-loggers was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/29 6:55 p.m.1 views

MAL-2025-42022 Malicious code in lovable-loggers (npm)

The package lovable-loggers was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/29 6:55 p.m.3 views

MAL-2025-42020 Malicious code in lovable-cli (npm)

The package lovable-cli was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/29 6:55 p.m.3 views

Malicious code in lovable-cli (npm)

The package lovable-cli was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/29 6:55 p.m.2 views

MAL-2025-42021 Malicious code in lovable-logger (npm)

The package lovable-logger was found to contain malicious code...

7AI score
Exploits0
HackRead
HackRead
added 2025/08/20 11:22 a.m.4 views

AI Website Builder Lovable Abused for Phishing and Malware Scams

Scammers have been spotted abusing AI site builder Lovable to mimic trusted brands, steal credentials, drain crypto wallets,…...

7.3AI score
Exploits0
CNNVD
CNNVD
added 2025/05/30 12:0 a.m.4 views

Lovable 安全漏洞

Lovable is an AI full-stack application builder from Lovable. A security vulnerability exists in Lovable versions 2025-04-15 and earlier, which stems from an insufficient database row-level security policy that could allow an unauthenticated attacker to read and write arbitrary database tables...

9.3CVSS8.8AI score0.00709EPSS
Exploits3References7
CVE
CVE
added 2025/05/30 12:0 a.m.102 views

CVE-2025-48757

CVE-2025-48757 concerns Lovable where an insufficient database Row-Level Security (RLS) policy up to 2025-04-15 could allow remote unauthenticated attackers to read or write to arbitrary database tables of generated sites. Several sources (NVD, Red Hat, CVE.org, CNNVD, PT-Security) confirm the is...

9.3CVSS9.4AI score0.00709EPSS
Exploits3References5
Rows per page
Query Builder