CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•5 views

Malicious code in cors-relay-mini-css-extract-plugin-winston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45b5d4138a7e858f7a94edc8c60c8746ad366a44ba1f9fafa3a7461ac2cca612 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-179465

Malicious code in css-loader-rehype-toml-version npm...

EUVD-2025-179468

Malicious code in css-loader-castor-supervisor-elara npm...

EUVD•added 2025/11/13 3:23 a.m.•3 views

EUVD-2025-177844

Malicious code in middleware-css-loader-eigenstate-pavo npm...

EUVD-2025-178927

Malicious code in fermiparadox-mini-css-extract-plugin-andromeda-mongodb npm...

EUVD-2025-176265

Malicious code in spectron-mini-css-extract-plugin-enif-commitizen npm...

EUVD-2025-177418

Malicious code in orbit-css-minimizer-webpack-plugin-paleontology-centaurus npm...

EUVD-2025-177910

Malicious code in meissa-optimize-css-assets-webpack-plugin-express-lint-staged npm...

EUVD-2025-179466

Malicious code in css-loader-mui-wasat-standard npm...

EUVD-2025-178818

Malicious code in fusion-gravity-css-loader-perseus npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•5 views

Malicious code in nestjs-css-loader-command-mensa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aadc9bae2c451c458228c585830c85a5ab63f5a358e31b3de37b61fa252b4550 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-180273

Malicious code in async-css-minimizer-webpack-plugin-heka-redgiant npm...

EUVD-2025-178477

Malicious code in hydrogeology-chariklo-pulsar-mini-css-extract-plugin npm...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-185557 Malicious code in ariel-backend-css-loader-aldebaran (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8985f6f4b26a752bfd23a32fbbf39c2aab5c6b48f599eb0f46f6398a6833b115 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score