CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2025/09/07 6:53 p.m.•5 views

Malicious code in brotli-python (PyPI)

7.3AI score

OSV•added 2025/09/06 8:37 p.m.•4 views

MAL-2025-191936 Malicious code in xenlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e53ee4ee9935e6502ce16df23a8110b5cccba018b9c0c14279ebabc163e84265 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.8AI score

OSSF Malicious Packages•added 2025/09/03 4:45 p.m.•5 views

Malicious code in data-processing-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f5c7542831f6f9fe72a65e436b1f85c10261aac12ceae6f1bcc490afad6d1aaa Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.6AI score

OSV•added 2025/09/03 4:45 p.m.•4 views

MAL-2025-47755 Malicious code in data-processing-utils (PyPI)

7.5AI score

OSSF Malicious Packages•added 2025/09/03 3:52 p.m.•6 views

Malicious code in awesome-tools-collection (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1b8c27c2c5512bcb412c63a9e5ab3a392cb21f8ff51f281d8e7ac73a08929abb Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.6AI score

OSV•added 2025/09/03 3:52 p.m.•4 views

MAL-2025-47746 Malicious code in awesome-tools-collection (PyPI)

7.5AI score

OSV•added 2025/09/03 3:52 p.m.•3 views

MAL-2025-47782 Malicious code in learning-pypi-demo-nisimi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0b3a0d62b36ae3a2e643a327b7cf5b88366d4a8a89381eca570f34c453f1eaf4 Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...

7.5AI score

OSSF Malicious Packages•added 2025/09/03 3:13 p.m.•4 views

Malicious code in nayzakishere (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 448aef468d12fea1df0793a00d8a0e55788dcebd3033ed1ec515012020538b6b Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

OSV•added 2025/09/03 3:13 p.m.•3 views

MAL-2025-191800 Malicious code in nayzakishere (PyPI)

7AI score

OSSF Malicious Packages•added 2025/09/03 3:12 p.m.•5 views

Malicious code in fromwherebitch (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 afc6e5261aea72f5412acfb599af497963496a824bdd8a9b943b2873cbd4c743 Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

OSV•added 2025/09/03 3:12 p.m.•3 views

MAL-2025-191735 Malicious code in fromwherebitch (PyPI)

7AI score

OSV•added 2025/09/02 1:48 p.m.•2 views

MAL-2025-47805 Malicious code in trongithpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fd746459b157adb9ec54b646179a859c1719a7ae94e63bbd6180c683a804e49b Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

6.8AI score

OSSF Malicious Packages•added 2025/09/02 1:48 p.m.•3 views

Malicious code in trongithpy (PyPI)

6.9AI score

OSV•added 2025/09/02 9:19 a.m.•3 views

MAL-2025-47759 Malicious code in doxer (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5e6e78428567e3ac4f2fdc27911858b6758446b4fe60c754488f881a203e32a9 During installation a screenshot is exfiltrated, and the package has no other purpose --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

6.9AI score

OSSF Malicious Packages•added 2025/09/02 9:19 a.m.•3 views

Malicious code in doxer (PyPI)

7AI score

OSSF Malicious Packages•added 2025/08/30 11:17 a.m.•5 views

Malicious code in fuckyoubitchbro (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fbbf1ade5d81c12afb87a44117b27f76d2e4bfa91b578fc50dfb44a8bb79cabe Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

OSSF Malicious Packages•added 2025/08/29 6:44 p.m.•4 views

Malicious code in trongitpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e52bd087b815590884e004c2db67e0dd137ff0230282e4eb2b27afcb11ed36c3 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

6.9AI score

OSV•added 2025/08/29 6:44 p.m.•3 views

MAL-2025-47806 Malicious code in trongitpy (PyPI)

6.8AI score

OSV•added 2025/08/29 6:43 p.m.•3 views

MAL-2025-47784 Malicious code in license-checker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a636a791b9731fe5018309c2e7890934873ab4c091520d933029f170a1848592 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...