CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2026/03/24 12:48 p.m.•6 views

Malicious code in agoda-test-poc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 61298c02c98b568b7b2735848ed2087ced94165a58e6602af9769d359b279056 The package agoda-test-poc was found to contain malicious code. Source: ghsa-malware f1dc100458bb8a2a4c1831d2a680b7895085adc4bb5fa5c90701f52b1165eb8d...

OSSF Malicious Packages•added 2026/03/24 12:48 p.m.•9 views

Malicious code in agoda-dep-confusion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faa0bc71a76133f8ba2469aab72a42ed605c22eaf6a3816754f5dff2cb21fa87 The package agoda-dep-confusion was found to contain malicious code. Source: ghsa-malware...

OSV•added 2026/03/24 12:48 p.m.•5 views

MAL-2026-2126 Malicious code in agoda-dep-confusion (npm)

OSV•added 2026/03/24 12:48 p.m.•6 views

MAL-2026-2127 Malicious code in agoda-test-poc (npm)

Snyk•added 2026/03/24 12:48 p.m.•4 views

Malicious Package

Overview agoda-dep-confusion is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.8AI score

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-17937 Malicious code in dam-driver-agoda (npm)

The package dam-driver-agoda was found to contain malicious code...

7.2AI score

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•2 views

Malicious code in dam-driver-agoda (npm)

The package dam-driver-agoda was found to contain malicious code...

OSSF Malicious Packages•added 2025/06/24 2:29 p.m.•4 views

Malicious code in agoda.cronos.activities.client-side (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0928f5727876dc4dcdb9f1869badd5793565d97277f96836f85b5413f44bcaf9 Any computer that has this package installed or running should be considered...

OSSF Malicious Packages•added 2025/06/24 11:5 a.m.•4 views

Malicious code in agoda.cronos.gql (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0918c4b7cc7549b33d32ef492ce8439108e4df06cece719c5a0e497e048f6293 Any computer that has this package installed or running should be considered...

OSSF Malicious Packages•added 2024/11/29 1:21 a.m.•3 views

Malicious code in agoda (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8556377fff6ad9dfc3bb12eac1be9583621abe348598c4a9a835c3103eb76089 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References3

OSV•added 2024/11/29 1:21 a.m.•6 views

MAL-2024-11128 Malicious code in agoda (npm)

OSSF Malicious Packages•added 2024/10/09 5:6 a.m.•2 views

Exploits0References3

Malicious code in agoda-design-toolkit-2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 108287c52cc6b7d73890c29bc9f478cb107ed2906c062820d73eb4d51795eb80 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

OSV•added 2024/10/09 5:6 a.m.•6 views

MAL-2024-9123 Malicious code in agoda-design-toolkit-2 (npm)

Snyk•added 2024/10/02 12:28 p.m.•2 views

Malicious Package

Overview agoda-design-toolkit-2 is a malicious package. This package contains malicious code that collects sensitive information about the victim and sends it to the attacker's remote server. While this package might be attempting to impersonate a valid organization, there is no connection betwee...

9.8CVSS7AI score

Snyk•added 2024/10/02 12:28 p.m.•2 views

Malicious Package

9.8CVSS7AI score

OSSF Malicious Packages•added 2024/09/25 12:33 a.m.•2 views

Malicious code in wpdesigndev.wp.agoda.com (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85f362ca1a25dbb0c9b2ed5e09fd071e1ac8ada24fafc9cb15bb3f9115d0de9a The OpenSSF Package Analysis project identified 'wpdesigndev.wp.agoda.com' @ 100.0.5 npm as malicious. It is considered malicious because: - The...

6.9AI score

Openbugbounty•added 2016/08/31 10:25 a.m.•20 views

agoda.com XSS vulnerability

Vulnerable URL: https://www.agoda.com/'onmouseover='alert/OPENBUGBOUNTY/'rest=' Details: Description| Value ---|--- Patched:| Yes, at 26.10.2017 Latest check for patch:| 26.10.2017 10:41 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 857 VIP website status:| Ye...

6.3AI score

Openbugbounty•added 2016/07/28 12:9 a.m.•11 views

travelblog.agoda.com Open Redirect vulnerability

Vulnerable URL: http://travelblog.agoda.com/process/RedirectN?url=https://www.openbugbounty.org Details: Description| Value ---|--- Patched:| Yes, at 01.12.2016 Latest check for patch:| 01.12.2016 17:54 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank|...

6.8AI score

Openbugbounty•added 2016/07/22 9:10 p.m.•69 views

agoda.com XSS vulnerability

Vulnerable URL: https://www.agoda.com/' style=position:fixed;top:0;left:0;width:9999px;height:9999px; onmouseover='alert"OPENBUGBOUNTY"' Details: Description| Value ---|--- Patched:| Yes, at 31.08.2017 Latest check for patch:| 31.08.2017 09:38 GMT Vulnerability type:| XSS Vulnerability status:|...

6.3AI score