CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9169 matches found

OSSF Malicious Packages•added 2025/05/29 10:39 p.m.•4 views

Malicious code in alpha-booster (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8fe7614b282cfa81278bc61bde1998e286fe7554c1d37b4c3185718c6e54f6af Code downloads and runs the remote executable. While the current link seems not to work, the previous versions had an embedded infostealer instead. --- Categor...

7AI score

Exploits0References1

OSV•added 2025/05/29 10:39 p.m.•4 views

MAL-2025-6431 Malicious code in alpha-booster (PyPI)

6.9AI score

Exploits0References1

OSSF Malicious Packages•added 2025/05/27 5:53 a.m.•4 views

Malicious code in fernetpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ccbbcfd921dcefb2809ba41756181682f7a04f1a9f701adcf0c37c9889d87a98 If imported, the module starts a multi-stage infostealer, exfiltrating browser data as well as crypto wallets, and also attempts to monitor clipboard looking f...

6.9AI score

Exploits0References1

OSSF Malicious Packages•added 2025/05/27 5:53 a.m.•3 views

Malicious code in pyfernet (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5a2f90c0e3c6e46456cd3e319aaaf4a7b53475a554a997a964fdda898e85fcd0 If imported, the module starts a multi-stage infostealer, exfiltrating browser data as well as crypto wallets, and also attempts to monitor clipboard looking f...

6.9AI score

Exploits0References1

OSSF Malicious Packages•added 2025/05/26 4:56 p.m.•5 views

Malicious code in tensorflows (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e08c37ae45b3a5d5a85a5555ded262e154d91f563636cb5b149176e1aaf12fa7 Clearly typosquatting packages, but no known malicious parts. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anything...

7AI score

Exploits0References1

OSSF Malicious Packages•added 2025/05/26 4:56 p.m.•4 views

Malicious code in matplotlibe (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 082b8eb9ac76b7c5ec057f8c5f0aeff99b84841c33c50fb570874ff4e435375a Clearly typosquatting packages, but no known malicious parts. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anything...

7AI score

Exploits0References1

OSV•added 2025/05/26 4:56 p.m.•4 views

MAL-2025-191786 Malicious code in matplotlibe (PyPI)

6.8AI score

Exploits0References1

OSV•added 2025/05/26 4:56 p.m.•7 views

MAL-2025-191891 Malicious code in tensorflows (PyPI)

6.8AI score

Exploits0References1

RedhatCVE•added 2025/05/23 12:37 a.m.•5 views

CVE-2022-40811

The d8s-urls for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-file-system package. The affected version is 0.1.0...

9.8CVSS6.9AI score0.0099EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:39 p.m.•5 views

CVE-2022-40427

The d8s-domains for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-networking package. The affected version is 0.1.0...

9.8CVSS9.4AI score0.0099EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 11:13 p.m.•7 views

CVE-2022-34065

The Rondolu-YT-Concate package in PyPI v0.1.0 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

9.8CVSS7.8AI score0.01931EPSS

Exploits1References1

OSV•added 2025/05/22 12:34 p.m.•3 views

MAL-2025-4274 Malicious code in ypj (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score

Exploits0

OSSF Malicious Packages•added 2025/05/22 12:34 p.m.•4 views

Malicious code in ypj (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0