CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2026/04/14 3:21 p.m.•2 views

Malicious code in moooo (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 110e4d99f41d1dd4567651dc21115f1793e5e2eab0e12d24ea5a433cdea87f1c When used, the package silently loads code with an infostealer focused on Discord data. --- Category: MALICIOUS - The campaign has clearly malicious intent, li...

5.9AI score

OSV•added 2026/04/14 3:21 p.m.•0 views

MAL-2026-2666 Malicious code in moooo (PyPI)

5.9AI score

OSV•added 2026/04/04 12:56 p.m.•2 views

MAL-2026-2487 Malicious code in discord-request (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 72c23e7229682f063ef325dcc1a1a7d58bff184f694b76594af9eeeeeca958e7 The package contains an infostealer focused on Discord data. The code is broken. --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

OSSF Malicious Packages•added 2026/04/04 12:56 p.m.•5 views

Malicious code in discord-request (PyPI)

OSV•added 2026/03/31 5:7 p.m.•3 views

MAL-2026-2313 Malicious code in coredxloader (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b26408ee7735357c61e0a81e60620000999ef84eba419797b20858e5ce5b4a62 During importing, code starts a malicious script performing exfiltration of sensitive data and credentials from e.g. browsers and Discord clients to a remote...

OSV•added 2026/03/24 8:7 p.m.•2 views

MAL-2026-2141 Malicious code in corexloader (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 02fc84ddadc717cbd2dc073832c3c9e438f82d2671927fa79be959fea7031304 During importing, code starts a malicious script performing exfiltration of sensitive data and credentials from e.g. browsers and Discord clients to a remote...

CNNVD•added 2026/01/19 12:0 a.m.•3 views

OnboardLite security vulnerabilities

OnboardLite is an open-source application developed by Hack@UCF. OnboardLite has a security vulnerability, which stems from a stored-xss vulnerability. This vulnerability could allow administrators to render the user’s Discord account when they attempt to migrate it in the dashboard...

7.3CVSS5.8AI score0.00087EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 9:50 a.m.•2 views

CVE-2020-24928

managers/socketManager.ts in PreMiD through 2.1.3 has a locally hosted socketio web server port 3020 open to all origins, which allows attackers to obtain sensitive Discord user information...

5.3CVSS6.8AI score0.00206EPSS

Malwarebytes•added 2025/10/13 7:19 a.m.•4 views

A week in security (October 6 – October 12)

Last week on Malwarebytes Labs: Apple voices concerns over age-check law that could put user privacy at risk Your passwords don’t need so many fiddly characters, NIST says Millions of very private chats exposed by two AI companion apps Fake VPN and streaming app drops malware that drains your ban...

6.7AI score

Wired Threat Level•added 2025/10/11 10:30 a.m.•2 views

'Happy Gilmore' Producer Buys Spyware Maker NSO Group

Plus: US government cybersecurity staffers get reassigned to do immigration work, a hack exposes sensitive age-verification data of Discord users, and more...

OSSF Malicious Packages•added 2025/02/15 6:4 p.m.•4 views

Malicious code in dcbotoffline3 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 80a535a6580b99aa10e80e810002076c68ae79c44c9fb17caff1f59978ebaaa7 Starting the module runs an infostealer targeting browsers and Discord data --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

7AI score

OSSF Malicious Packages•added 2025/02/15 6:4 p.m.•3 views

Malicious code in dcbot-online (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a2b2d82d9610b559f44aa1473f097c56b8f87a6297941604807a0ec56bf2abf4 Starting the module runs an infostealer targeting browsers and Discord data --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

7AI score

OSV•added 2025/02/15 6:4 p.m.•1 views

MAL-2025-191714 Malicious code in dcbot-online (PyPI)

OSV•added 2025/02/15 6:4 p.m.•0 views

MAL-2025-191715 Malicious code in dcbotoffline3 (PyPI)

OSV•added 2024/12/19 9:59 p.m.•1 views

MAL-2024-12322 Malicious code in piepunk (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 40c9660a52e99412daf32818f5263ad562bf43281984b9676aa93874912132be This is a clone of "pymunk" package. In the space.py file there is a code that attempts to exfiltrate data from the Discord client during initialization...

7AI score

OSSF Malicious Packages•added 2024/05/13 12:39 a.m.•2 views

Malicious code in discord-datas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cdc0b10c3c3f41706cb302d6e6b02afb133f5baa93c16a2b34c6f32a6a242c22 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

The Hacker News•added 2023/06/14 10:43 a.m.•3 views

New Golang-based Skuld Malware Stealing Discord and Browser Data from Windows PCs

A new Golang-based information stealer called Skuld has compromised Windows systems across Europe, Southeast Asia, and the U.S. "This new malware strain tries to steal sensitive information from its victims," Trellix researcher Ernesto Fernández Provecho said in a Tuesday analysis. "To accomplish...

6.7AI score

The Hacker News•added 2023/06/14 10:43 a.m.•33 views

New Golang-based Skuld Malware Stealing Discord and Browser Data from Windows PCs

6.7AI score