CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

21 matches found

OSSF Malicious Packages•added 2026/05/20 7:11 a.m.•5 views

Malicious code in @weirdorg/dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dce94a089c58246a54a1e4496d323c92bb46dac654e1a1403e875292be94b198 Package is a near-verbatim republication of the popular dotenv library same README, API, and file layout under the @weirdorg/dotenv name. The only...

Exploits0References1

OSSF Malicious Packages•added 2026/03/26 12:31 a.m.•2 views

Malicious code in @universeorg/dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e1bca28be318e644a718c57c724dac6b6b480889b772e317cda8bb23512515c The package @universeorg/dotenv was found to contain malicious code. Source: ghsa-malware...

Exploits0References1

OSV•added 2026/03/26 12:31 a.m.•1 views

MAL-2026-2220 Malicious code in @universeorg/dotenv (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e1bca28be318e644a718c57c724dac6b6b480889b772e317cda8bb23512515c The package @universeorg/dotenv was found to contain malicious code. Source: ghsa-malware...

Exploits0References1

OSSF Malicious Packages•added 2026/03/18 12:47 p.m.•1 views

Malicious code in dotenv-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 14a15bdceba2f650e2c3d04e2be33994e406c2548812e89a520fc511c2529266 The package dotenv-nodejs was found to contain malicious code...

OSSF Malicious Packages•added 2026/01/09 2:55 a.m.•5 views

Malicious code in dotenv-intended (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 321eaa257985bd47bbf31b2f7ccdaef2df5b424b7b257400a48140ef6029e670 The package dotenv-intended was found to contain malicious code. Source: ghsa-malware df2195d5589f3e44d82053db7cd9ae186dfd168b35c9db8f97baa29f0c63612...

Exploits0References1

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•5 views

Malicious code in dotenv-safe-norma-vuetify-paleomagnetism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ccad51f031eaa94c4ba5ee1a9ff854e2f73daacdc4dd9892bd11978d178526b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•5 views

Malicious code in dotenv-parse-variables-heliophysics-wasat-metalsmith (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f18f0da4eb19316997c90d96ccdcd3fdbbc492bb805db52cc447d51631bb5ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179254

Malicious code in dotenv-sedna-inflation-figures npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-111867

Malicious code in lacerta-magellan-sagitta-dotenv npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-114369

Malicious code in dotenv-parse-variables-yonder-readable-vega npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-114381

Malicious code in dotenv-parse-variables-nightmare-aether-run-script npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-114379

Malicious code in dotenv-parse-variables-orbit-relay-dotenv-safe npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in dotenv-safe-upgrade-neptune-pyxis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 993e6b712b213cecbfec8df45c31301cd66b05cbaf0dc19ed7a070c42eed4276 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-141725 Malicious code in dotenv-parse-variables-meteor-gridsome-eleventy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0350e4e97914558d21236dc86b33cf1f8a2f17eaaf6880451967e6cb9113f292 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-114400

Malicious code in dotenv-parse-variables-axios-rimraf-socketio npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-116626

Malicious code in apex-dotenv-parse-variables-wezen-ora npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in dotenv-parse-variables-got-hermes-octans (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f25f97964c2f26070ac5974345a378e144d266f2570ec41d0fa375f8934c90a3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-111614

Malicious code in local-wezen-dotenv-safe-ultra npm...

OSV•added 2025/11/12 4:29 a.m.•0 views

MAL-2025-141717 Malicious code in dotenv-parse-variables-despina-helios-venus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 394b18f97386bd3801ef7412aeef0d1251cf070f9cc633a408bae11d7719e5c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•3 views

Malicious code in dotenv-parse-variables-xanthus-nestjs-playwright (npm)

The package dotenv-parse-variables-xanthus-nestjs-playwright was found to contain malicious code...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by