Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3449 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:55 a.m.3 views

Malicious code in lbank-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af2e7b3d563cdc0ef10b52937250bae2ab41fce0d24fad93efa37fc06eab3d20 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:46 a.m.3 views

Malicious code in toobit (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f762603da623d8fe137db26b48c17bb54cead19699d368690d433f939e45316f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:46 a.m.5 views

Malicious code in weex-internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f5dc8201c1f5628c039b881bee7d0251b1034d1ad7a7ef923c7e8e2d83d2bd28 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:40 a.m.6 views

Malicious code in kcex-internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ce9b582a4e9a1941b68d4f5d683d97c93a4bda05b8d494dc0bac426302aa4f6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:38 a.m.3 views

Malicious code in coinstore-internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05d0767c1978fe4aea1d8d7ba69d0024d46e3bda1aafee9038125e6cfcdf0756 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:38 a.m.3 views

Malicious code in coinstore (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 286d8b6ab8cdb3aa670b6e20e27a75655c4e1aa96479e07e1684ef09ef31f7d0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:34 a.m.3 views

Malicious code in yizhifabao61 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4890e322299c10cf22318660890a8ac411e680b618a7bd30761c5016243379c5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/17 6:28 a.m.2 views

Malicious code in telegram-bo-host (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 28fd9765bfefea66d1093370889461df9f0a485441525ded55777d47c2854591 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/13 11:20 p.m.3 views

Malicious code in dzengi (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8119e05e44d286deeecdba85e6cf45a95749db4907cb770fa9828949f1fc347c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2025/02/13 10:44 p.m.3 views

MAL-2025-1362 Malicious code in genesys-richmedia (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0961665538e0d2d003567292d856ba063d66f2dc4ffa8cd8fbf50ea8e65a2645 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/13 5:6 a.m.3 views

Malicious code in ascendex-test (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a7d0c8803a00a9ae99435e647d34560b1abbd7f2916cf052fe47e842e7b6a407 Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/13 4:0 a.m.5 views

Malicious code in htx-production (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a324a3156986db6587e4fe70275125c2b106568801878d78c83f8fe6a268c3b0 Any computer that has this package install...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/07 7:20 a.m.4 views

Malicious code in nodex123 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 618140b407aedfe1e6bb6be93aa0f3f347a759aa42e82f72ae5e44893a119237 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/07 6:7 a.m.3 views

Malicious code in sparo-real-repo-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 93d18b364aaf7362713190f03898dae9466135f12296f1c8384d269df6910bc2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSVadded 2025/02/07 6:7 a.m.3 views

MAL-2025-1264 Malicious code in zkwasm-poc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bc6469b76f120091996789c8a222676a36dc660a1a3411c27b232b1938a6b40d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/07 6:0 a.m.3 views

Malicious code in internallib_v331 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7396dc02a5405a71efdc0e63b0eaca22d4ba3161189c8366d3bb835fc7a18b6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSVadded 2025/02/07 6:0 a.m.3 views

MAL-2025-1249 Malicious code in internallib_v331 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d7396dc02a5405a71efdc0e63b0eaca22d4ba3161189c8366d3bb835fc7a18b6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/02/05 2:24 a.m.10 views

CVE-2024-24409

Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option...

8.8CVSS6.9AI score0.03941EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/03 8:53 p.m.4 views

Malicious code in libhash-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b2e27ca6bff082d9645b924364c7f5bba8fbfa574d7f60ffe823a7c52cda079 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/03 5:25 p.m.3 views

Malicious code in calendar-card-component (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95a4969cc148bc29146d190547f35d8feedf6f215b80c642dc30147343561f09 Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
Rows per page
Query Builder