CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSSF Malicious Packages•added 2026/05/20 5:29 p.m.•5 views

Malicious code in vlifegram (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8771013473b84f29159a80ec15ce3e9897bc69908ddfa2438845811dd276d87c VLifeGram is published under its own name on PyPI but installs into the pyrogram/ namespace and ships a Pyrogram fork at version 2.1.2.4. It adds an...

6.2AI score

Exploits0References1

OSSF Malicious Packages•added 2026/05/20 1:9 a.m.•7 views

Malicious code in get-deps-path (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65fa6f34a831aa832f9d88019ce3d0f4011701df6ab0667bd263645208c978ce On require, get-deps-path immediately invokes getPlugin, which performs an HTTP fetch to https://jsonkeeper.com/b/QBRMI an anonymous public paste hos...

6.2AI score

Exploits0References6

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-9102 Malicious code in @michaljaz/backdoor (npm)

The package @michaljaz/backdoor was found to contain malicious code...

7.2AI score

Exploits0

ATTACKERKB•added 2022/09/19 4:15 p.m.•1 views

CVE-2022-40809

The d8s-dicts for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...

9.8CVSS7.3AI score0.00637EPSS

Exploits0References3

ATTACKERKB•added 2022/09/19 3:15 p.m.•2 views

CVE-2022-40808

The d8s-dates for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-hypothesis package. The affected version is 0.1.0...

9.8CVSS7.3AI score0.00719EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by