CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/03/16 10:13 a.m.•3 views

MAL-2026-1464 Malicious code in pretty-changelog-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64b9f609acf299244364375bad1f58bc65eb5c8b17ca7e9bc92de94aff7e975c The package pretty-changelog-logger was found to contain malicious code. Source: ghsa-malware...

5.7AI score

OSV•added 2026/03/10 1:4 a.m.•2 views

MAL-2026-1309 Malicious code in iron-localstorage (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0b4370af9c8f0db5604f7bc2648c64054140ea6fbcfebd4eef181c7330efaf77 The package iron-localstorage was found to contain malicious code. Source: ghsa-malware...

5.7AI score

OSV•added 2026/02/03 7:44 a.m.•3 views

MAL-2026-692 Malicious code in graphrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 999c8394a8d5c821b17e5e5574f8d881c1281de19cc1df8af7f5dc82efe8a57f The package graphrix was found to contain malicious code. Source: ghsa-malware 88b6625fcbb125b7b3432974b307d94dfbe798496eb8285a739807f9d4b413a2 Any...

5.5AI score

Exploits0References2

OSV•added 2026/01/06 12:58 p.m.•3 views

MAL-2026-75 Malicious code in ethos2.0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a012a962472733bf307c16dd1dfe1806727190273d53ac57bf4b524a26d34c96 The package ethos2.0 was found to contain malicious code. Source: ghsa-malware b646ddc4b3047452eaaf5304b21effbc2f0dd9800fd136ebfb4d33936f3bd8e6 Any...

OSV•added 2025/12/10 1:44 a.m.•2 views

MAL-2025-192402 Malicious code in wartsila-text-csv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7aa25dcd1a96ff24f8f3638d5f052e05a258f9847ef25a146cd479697b26a963 The package wartsila-text-csv was found to contain malicious code. Source: ghsa-malware...

OSV•added 2025/11/24 11:49 p.m.•1 views

Exploits0References3

MAL-2025-191455 Malicious code in @kong/spec-renderer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb95018d12b664fc03fb69a58512ad0f479a61403b520ae8b325153404f3e14b The package @kong/spec-renderer was found to contain malicious code. Source: ghsa-malware...

OSV•added 2025/10/30 11:58 p.m.•2 views

MAL-2025-49258 Malicious code in genesis-drop-actions (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9edb9a242cd3f939420031dd53e6057ae90e644f3a08fdc50bc1f92d1296832e The package genesis-drop-actions was found to contain malicious code. Source: ghsa-malware...

OSSF Malicious Packages•added 2025/09/10 12:46 p.m.•3 views

Malicious code in jsexports-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3faa85960d0da372c3591bd8e6336208f04090cc24ca88b734d8e84d5f389c16 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/09/08 2:26 p.m.•3 views

Malicious code in debug (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 558d1dda312e85212121f4ed15340349f780f5e40d6685c3687648bbb2924381 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score

Exploits0References5

OSSF Malicious Packages•added 2025/06/25 2:58 p.m.•5 views

Malicious code in media_videojs (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9e2d4c098696f8d6f785f1e8a2674e14ce4fba193940fd5ed1fbe6eb8f1e266 Any computer that has this package installed or running should be considered...

OSSF Malicious Packages•added 2025/05/15 1:22 p.m.•2 views

Malicious code in rushstack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b991f4891d1df3ceec8938fb7ae61d26651d75afce6f8b5b8317d7532e64b9be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/03/14 1:5 a.m.•2 views

Malicious code in dependencyconfusion9 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b9edcf18e33ec93ceabdfbe5a3abe51fa0d8d0516fba9cd74563575aca18c7c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/01/14 12:19 a.m.•3 views

Exploits0References3

Malicious code in web-prototyping-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a14e26877ba590485f30ac33a914cfaa213c85de0503b2ff68bd4d9debc5e0f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/12/05 1:37 a.m.•3 views

Exploits0References3

Malicious code in crypto-layout-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1fb00ef7ee21b6fc04fbef059a71415a1b6af8daf224b5e56df77ba85fa99351 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/10/09 5:6 a.m.•3 views

Malicious code in uchiwa (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b78fb0f3b60891d298b32c03ea935ba7012fa9c434f044309d2107610e14bd2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/09/04 9:5 a.m.•3 views

Exploits0References2

Malicious code in awoueir (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be7f25a81f205aca7ccdd9ee7f7b4e070817b95a3942077af2cfd1015a296796 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/07/04 5:10 a.m.•2 views

Malicious code in @zitterorg/ipsam-officia (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6490841eb885d4711d6a5e5a41e93e85704f8da80f267e9a5cf4fb7de5684653 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/07/04 5:10 a.m.•5 views

Malicious code in @zitterorg/at-esse-dolorum (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 94c31f5f03b816b71582c1551e7c67fc4d8c2cfdd1e05a18de2b179409a10ac6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/01/24 8:23 p.m.•3 views

Malicious code in wlwz-2312-4707 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9570305fd15aa43d32dfa404dc8e107b9af226559abd3c1781e32d3672a96536 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...