Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/12 7:18 p.m.3 views

Malicious code in inul-poke21 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55706435058417cbe13d3ad0dad3cbf40e65f83494ec45ddd47054b3ef491204 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/12 4:47 p.m.2 views

MAL-2025-169658 Malicious code in ucok-poke38 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3ba342dbe751d622137b3e16c4055d0f41a9bdc7d4bec97260c4d7555b62c14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 10:56 p.m.2 views

Malicious code in galih-kue28-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2d4051c9ad9249e99d923f33b70b461574936311d1e14c8d886825265549a79 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/11 10:56 p.m.1 views

MAL-2025-137586 Malicious code in unconscious_kingfisher_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5872b604f7d40a610c1efd724063e5837f8ad18b24b1eaf1e1f74501504f5be2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder