18104 matches found
EUVD-2025-200194
Malicious code in ddos-l7 npm...
Malicious Package
Overview multer-cli is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Malicious code in mongodb-atlas-cli-toc-generator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b43eaf31369a3ecfac60651fb3c08bc314680fd9b476179d902bbfee64b0d62 The package mongodb-atlas-cli-toc-generator was found to contain malicious code...
MAL-2025-191528 Malicious code in telesis (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5acbf28efb6fa8452a846fc5d9517c32242464a4add69649d72a465b7f48ee60 The package telesis was found to contain malicious code...
Malicious code in privy-frames-v2-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50804c5abc715a96e6683f67c970ed8e06d949cce42d57ac7d8754c9633ad685 The package privy-frames-v2-demo was found to contain malicious code...
MAL-2025-191509 Malicious code in debug-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88f2a76a5ede2df04c7d9b90d9fe0164f99a388aaf4ba018dc9b40f2b794d967 The package debug-common was found to contain malicious code...
Malicious code in privy-farcaster-demo (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 87c7eee6179f85bcc2beaf0d3637f35c0a626b6db6222c86af862a01e01645e1 The package privy-farcaster-demo was found to contain malicious code...
EUVD-2025-200010
Malicious code in m365-action-sdk npm...
MAL-2025-191502 Malicious code in pluxee-design-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 701f52cd229baaf8a44c372915a6bdbcc5510c156fb75c21d23c932d51ccde2f The package pluxee-design-system was found to contain malicious code. Source: ghsa-malware...
MAL-2025-191582 Malicious code in react-mandes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8242aeb2b6b10985e7b4c0a35cb731d81095b7f039aea2886d0c4c35ffa5d9ea The package react-mandes was found to contain malicious code...
MAL-2025-191574 Malicious code in eslint-lodash (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64e5339ebcf037bec59b58b4622230d6f22619a009685877e469b566e883248a The package eslint-lodash was found to contain malicious code...
CVE-2025-13806
creationtimestamp| type| source ---|---|--- 2025-12-01 04:33:49+00:00| seen| https://infosec.exchange/users/offseq/statuses/115642441906765257...
ASB-A-448253912
Bulletin has no description...
ASB-A-442288324
Bulletin has no description...
Malicious Package
Overview seeds-alert is a malicious package. This package contains malicious code associated with a social engineering campaign called "Contagious Interview." The attackers target developers through fake job interviews or coding test assignments that require the installation of this package. Once...
CVE-2025-66027
creationtimestamp| type| source ---|---|--- 2025-11-29 10:33:39+00:00| seen| https://infosec.exchange/users/offseq/statuses/115632532223407853...
SUSE CVE-2025-64330
Suricata is a network IDS, IPS and NSM engine developed by the OISF Open Information Security Foundation and the Suricata community. Prior to versions 7.0.13 and 8.0.2, a single byte read heap overflow when logging the verdict in eve.alert and eve.drop records can lead to crashes. This requires t...
Millions at risk after nationwide CodeRED alert system outage and data breach
A nationwide cyberattack against the OnSolve CodeRED emergency notifications system has prompted cities and counties across the US to warn residents and advise them to change their passwords. CodeRED is used by local governments to deliver fast, targeted alerts during severe weather, evacuations,...
CVE-2025-13742
creationtimestamp| type| source ---|---|--- 2025-11-27 12:51:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6mfvwpiba2s...
CERTFR-2025-ACT-051
creationtimestamp| type| source ---|---|--- 2025-11-27 09:18:51+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/115620913416794951...