CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-177923

Malicious code in mechatronics-borealis-tardigrade-init npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•6 views

Malicious code in changelog-borealis-resolvers-resonance (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8b416fdfbee04efb784faadebdebb2f83d584927c66aae9b5f0c1ccc972efd83 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-179984

Malicious code in borealis-rigel-string-exoplanetology npm...

EUVD-2025-179987

Malicious code in borealis-hercules-ora-lyra npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in borealis-promise-spinner-ora (npm)

6.9AI score

EUVD-2025-179986

Malicious code in borealis-hermes-bellatrix-geochronology npm...

EUVD-2025-177214

Malicious code in phoebe-borealis-vuepress-coronalmassejection npm...

EUVD-2025-175589

Malicious code in webpack-borealis-paleoceanography-odin npm...

EUVD-2025-177141

Malicious code in planetology-borealis-nashira-celeste npm...

EUVD-2025-179985

Malicious code in borealis-promise-spinner-ora npm...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-190287 Malicious code in webpack-borealis-paleoceanography-odin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cbf8f7f7c20f0f2447cff594b125306eb9f2baec1daf20a389df5654223f40d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

EUVD-2025-179514

Malicious code in cressida-indus-epimetheus-borealis npm...

EUVD-2025-176099

Malicious code in superposition-unuk-spectroscopy-borealis npm...

EUVD-2025-176886

Malicious code in pyxis-enif-wasat-borealis npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•2 views

Malicious code in borealis-hercules-ora-lyra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9629f8a43475f540dbda3704d798a24991f7120a96a82ddb110b11d79e356e1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

OSSF Malicious Packages•added 2025/09/05 5:10 p.m.•1 views

Malicious code in borealis-innercore-ganymede-solis (npm)

The package borealis-innercore-ganymede-solis was found to contain malicious code...

7AI score