CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1083889 matches found

OSV•added last week•5 views

MAL-2026-5770 Malicious code in llmgenerator (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06e55ac2d3368516d538c8efaad2b83814dbb61813f36ab5655f77677ca0d6be On pip install, setup.py performs an HTTP GET to https://pastebin.com/raw/yBcUM1QB, takes the first line of the response body, and passes it to...

Exploits0References6

OSV•added last week•3 views

MINI-G8VV-8559-F8MC

Bulletin has no description...

3.3CVSS5AI score0.00145EPSS

OSV•added last week•3 views

MINI-VMJP-VXPV-2994

Bulletin has no description...

3.1CVSS4.9AI score0.0028EPSS

OSV•added last week•3 views

MINI-3PQM-P3HP-PJ2G

Bulletin has no description...

6.1CVSS4.9AI score0.00236EPSS

OSV•added last week•2 views

MINI-9JX2-V23W-QM8Q

Bulletin has no description...

5.6CVSS6.7AI score0.00348EPSS

OSV•added last week•3 views

MINI-HCRX-P3C8-GRQ2

Bulletin has no description...

3.3CVSS4.9AI score0.00145EPSS

OSV•added last week•3 views

MINI-VR3R-V2V6-PCC9

Bulletin has no description...

9.1CVSS4.9AI score0.00309EPSS

OSV•added last week•3 views

MINI-76Q3-7W3H-XHVV

Bulletin has no description...

6.5CVSS4.9AI score0.00204EPSS

OSSF Malicious Packages•added last week•9 views

Malicious code in bash8 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 375ef978992bd3c12f8778e62d2c6f8a105fa3a15cc508db6d8dd6043fd7507c setup.py overrides the install command with a custom InstallWithBeacon class that, on pip install, collects the installer's hostname via...

Exploits0References2

OSSF Malicious Packages•added last week•10 views

Malicious code in ezllmgen (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9ad551d9ee9ad2f3c29daab0377c3e52289324e938e28a3b58d71c60e8e15e8 setup.py downloads the first line of https://pastebin.com/raw/yBcUM1QB via urllib and passes it directly to os.systemf'cmd /c "cmdpastebin"' during...

Exploits0References6

OSV•added last week•5 views

MAL-2026-5769 Malicious code in ezllmgen (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d9ad551d9ee9ad2f3c29daab0377c3e52289324e938e28a3b58d71c60e8e15e8 setup.py downloads the first line of https://pastebin.com/raw/yBcUM1QB via urllib and passes it directly to os.systemf'cmd /c "cmdpastebin"' during...

Exploits0References6

OSV•added last week•9 views

MAL-2026-5766 Malicious code in easyllmai (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4589bbb71e0bb3589a162bf2102bba5e8bf7124d3988235647d1e3c1d01821d0 During pip install, setup.py performs an unauthenticated HTTP fetch of https://pastebin.com/raw/yBcUM1QB, takes the first line of the response, and...

Exploits0References6

OSV•added last week•12 views

MAL-2026-5762 Malicious code in npm-sandbox-research-e9f0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a18a9932f78294e22aa0a85077b9318233ab0952bc8788ae8987fce3e5002c93 Package declares a postinstall hook "postinstall": "node run.js" that executes automatically on npm install. The tarball ships beacon scripts...

Exploits0References2

OSSF Malicious Packages•added last week•9 views

Malicious code in npm-sandbox-research-e9f0 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a18a9932f78294e22aa0a85077b9318233ab0952bc8788ae8987fce3e5002c93 Package declares a postinstall hook "postinstall": "node run.js" that executes automatically on npm install. The tarball ships beacon scripts...

Exploits0References2

GithubExploit•added last week•53 views

Exploit for Missing Authentication for Critical Function in Mcpjam Inspector

CVE-2026-23744 – MCPJam Inspector Unauthenticated Remote Code...

9.8CVSS6.6AI score0.36126EPSS

OSSF Malicious Packages•added 2026/06/14 1:55 a.m.•14 views

Malicious code in easyaillm (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6268f175708584b9c3de408c80de3dc1162f4d1ddedb1ce6201b90f409b0dea On pip install easyaillm, setup.py runs execbase64.b64decode... which decodes to code that fetches https://pastebin.com/raw/hEF5HaFc, treats the...

Exploits0References6

Tenable Nessus•added 2026/06/14 12:0 a.m.•5 views

SUSE SLES15 Security Update : unbound (SUSE-SU-2026:2369-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2369-1 advisory. This update for unbound fixes the following issues - CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. - CVE-2026-33278:...

10CVSS6.2AI score0.00888EPSS

Exploits0References34

OSSF Malicious Packages•added 2026/06/13 9:38 p.m.•9 views

Malicious code in @gbrlxvi/ts-form-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20e77262ebb59497687fabfba394959da9ce6afbaf436aa5fcf654b2c8a44a32 Package advertises trivial form-validation helpers notEmpty/isEmail/isPhone/maxLen/minLen but on require/import of the main module performs an...

Exploits0References14

GithubExploit•added 2026/06/13 9:21 p.m.•176 views

POC_cve_2026_35273

POCcve202635273 Universal Unauthenticated RCE via PeopleSof...

OSSF Malicious Packages•added 2026/06/13 9:17 p.m.•9 views

Malicious code in patientdocuments (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56c5ab4dc6470deaebe29f4851edb91bc5d5704e9f9578a91e238490708c007b package.json declares a preinstall lifecycle script that runs wget --quiet...

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by