CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

OSSF Malicious Packages•added 2023/05/18 3:27 p.m.•2 views

Malicious code in docs-component-title (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1e4e933240e0533957a39c9132a6925469e069081320949dc198545fd1080a49 The OpenSSF Package Analysis project identified 'docs-component-title' @ 1.2.2 npm as malicious. It is considered malicious because: - The packa...

6.9AI score

Exploits0

OSSF Malicious Packages•added 2023/05/18 3:25 p.m.•2 views

Malicious code in docs-component-advanced-permission (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1a065d7fc179e436125a277398d58863cc0c5145b5220c893c09409bdd44807d The OpenSSF Package Analysis project identified 'docs-component-advanced-permission' @ 1.1.0 npm as malicious. It is considered malicious becaus...

6.9AI score

Exploits0

OSSF Malicious Packages•added 2023/05/18 3:6 p.m.•3 views

Malicious code in docs-component-like (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cde662c7be657edd2cffb28c74114bf428fa1b9db283784ae67f159dbf201ce2 The OpenSSF Package Analysis project identified 'docs-component-like' @ 1.0.6 npm as malicious. It is considered malicious because: - The packag...

6.9AI score

Exploits0

Snyk•added 2022/07/27 8:7 a.m.•3 views

Malicious Package

Overview docs-component-login is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7.1AI score

Exploits0References3

Snyk•added 2022/07/27 8:7 a.m.•2 views

Malicious Package

Overview docs-component-pay is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packag...

9.8CVSS7.1AI score

Exploits0References3

Snyk•added 2022/07/27 8:7 a.m.•2 views

Malicious Package

Overview docs-component-permit-apply is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if th...

9.8CVSS7.1AI score

Exploits0References3

Snyk•added 2022/07/27 8:7 a.m.•1 views

Malicious Package

Overview docs-component-advanced-permission is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerabl...

9.8CVSS7.1AI score

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by