Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/04/13 3:25 p.m.3 views

Malicious code in @hpcc/js-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 66d87d26a2f328414129f2abca4fe30a3f49afcefc1734ff29504b30e8e5e538 The package @hpcc/js-api was found to contain malicious code. Source: ghsa-malware baed13149b187a8ebee8b70891d8c38114a2f8c25e0048e5f2524ae8cb61217e A...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/02 2:24 a.m.6 views

Malicious code in daytonjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64164959c731481a5fc4117f26a4e9716c24483ac92839fc7945131c96232801 The package daytonjs was found to contain malicious code. Source: ghsa-malware 2961273f0dc9c6f1bc13bb7c4e47797f2eae23dc3dfcafbf3f58984225127c16 Any...

5.7AI score
Exploits0References1
OSV
OSVadded 2025/12/05 2:44 a.m.2 views

MAL-2025-192307 Malicious code in jsonify-settings (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4542f68b7757f5b53642bfaa0e9904aa7fd388338cb001d9e7911b90641a909f The package jsonify-settings was found to contain malicious code. Source: ghsa-malware 286d141ff650d5b4b60b7ad344ea4c0f5b4c3326cf6e7ce1c5e1de74c53094...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/09/21 1:40 a.m.2 views

Malicious code in @zettle-bo/bank-settings (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c565236f7920d5e91efa88abc8e86c0b09894525e980f20ca14654a57126c8b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/08/19 3:55 a.m.2 views

Malicious code in jsnwebtokn (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b9288e8475ea1814b7f89fa819310919dde020cc928eda80644be29206fce3fe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder