CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2036 matches found

OSSF Malicious Packages•added 2026/04/25 9:45 a.m.•2 views

Malicious code in axis-charts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2948113b9e8ba2a0eaf9f07de49e63efdcdb91450acb69c6e5c9da9e2f982eb The package axis-charts was found to contain malicious code. Source: ossf-package-analysis...

5.8AI score

Exploits0

OSV•added 2026/04/25 8:43 a.m.•1 views

MAL-2026-3032 Malicious code in js-component-explorer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42b874b4949845eda88ec207be1ff9bedde0eb14b4f8cc12b4f46fd32bd32391 The package js-component-explorer was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score

Exploits0

OSSF Malicious Packages•added 2026/04/25 8:43 a.m.•2 views

Malicious code in js-component-explorer (npm)

5.3AI score

Exploits0

OSSF Malicious Packages•added 2026/04/24 10:55 p.m.•4 views

Malicious code in @tochka-ui/foundation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9575f5fa03036022a473218e67ec437c95aa1e3c0768e1006762695c772705c8 The package @tochka-ui/foundation was found to contain malicious code. Source: ghsa-malware...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/24 10:54 p.m.•6 views

Malicious code in elementary-data (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 96dc65f67f54411d3de6b23a33a8f73665e2703d7261b7f1720cdc089c528eea Versions 0.23.3 were compromised. A threat actor exploited a vulnerability in the CI workflows to inject code and establish, likely, a reverse shell in the CI...

5.9AI score

Exploits0References10

OSV•added 2026/04/23 4:11 p.m.•2 views

MAL-2026-3018 Malicious code in microsoft-employee-experience (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c34bc4b2b8497b2f155f93295b0fe4b78eb94e7830684929547465d0b66b7a7 The package microsoft-employee-experience was found to contain malicious code. Source: ossf-package-analysis...

5.7AI score

Exploits0

OSSF Malicious Packages•added 2026/04/23 2:35 p.m.•5 views

Malicious code in react-spa-npm (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43b35510ff33bc6f887152176f91fb63f2a336c8822c151ac6039ccced83c96b The package react-spa-npm was found to contain malicious code. Source: ghsa-malware c9044f471d6c131db0da2c97994b81cd8d2680486695f42dec152b2b23f5e0be...

5.8AI score

Exploits0References1

OSV•added 2026/04/23 2:35 p.m.•2 views

MAL-2026-3017 Malicious code in react-spa-npm (npm)

5.8AI score

Exploits0References1

OSV•added 2026/04/22 8:55 a.m.•2 views

MAL-2026-2990 Malicious code in etsyapp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d3ba88687c2454c8371f948d388d1aa11c628cc010daeee014c9dd60ad1c193 The package etsyapp was found to contain malicious code. Source: ossf-package-analysis 919ce430631b9f294e4f67032799f5df86d6c943a20c330407641916d7aab6...

5.7AI score

Exploits0

OSSF Malicious Packages•added 2026/04/20 3:46 p.m.•5 views

Malicious code in internal_insights_enabled (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b767ca0c2e6450230a1b4d2bfa3f974fc6e9cac87198adb5c3084ea5f6dcd5f7 The package internalinsightsenabled was found to contain malicious code. Source: ghsa-malware...

5.8AI score

Exploits0References1

OSV•added 2026/04/19 6:36 p.m.•1 views

MAL-2026-2931 Malicious code in react-spa-shadcn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7b0a6436d822911c9ab59cb73cdf9c25c0dfa562feb406fcfa450ad964418f89 The package react-spa-shadcn was found to contain malicious code. Source: ghsa-malware da9de249511ac32f8d560921d4da27724c126e29260a8fb7c4acb1da70c6b7...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/18 9:0 a.m.•3 views

Malicious code in cktool.core.internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 95da3751f8d8f63d46e480fc465291ffa814ac0294663c1d3d62d6b4b40df73c The package cktool.core.internal was found to contain malicious code. Source: ghsa-malware...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/18 8:50 a.m.•4 views

Malicious code in cktool.config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d17768ef72268e4f3e826458378ed35d149b66eee4e8ba9011ac3a56703d34a4 The package cktool.config was found to contain malicious code. Source: ghsa-malware 7ab5059fb326d298c03d52ca07411ad4f38ed446293bd6206c87b11b6c78aa13...

5.8AI score

Exploits0References1

OSV•added 2026/04/18 8:40 a.m.•1 views

MAL-2026-2922 Malicious code in cktool.api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b28b7eb696757e668aa67a3d187943f553dce7298e27f7b47cb90022034ac9ba The package cktool.api was found to contain malicious code. Source: ghsa-malware d228f217a2a065caaf43db67d6cc7dc3c842a2bc821523c33e11456a1a7c0d4e Any...

5.8AI score

Exploits0References1

OSV•added 2026/04/18 8:9 a.m.•1 views

MAL-2026-2925 Malicious code in cktool.internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d35ec7e83cb03e16d3d408e617ad1c8a72dae84f6b8655f5439b1e5465e47fc The package cktool.internal was found to contain malicious code. Source: ghsa-malware fea6b6dafa01114874236a50b5923473307ac91ce0b6c562d3ccb2fa27e6af4...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/18 7:55 a.m.•4 views

Malicious code in apple-cloudkit-internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cfcd7e5376478b86db5942e2492ae0763bad14dda004c55988edf420f5e62ce The package apple-cloudkit-internal was found to contain malicious code. Source: ghsa-malware...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/18 6:43 a.m.•4 views

Malicious code in ac-sasskit-internal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c88124eb460a9e33e146185720f25d78918a3b360c1e41d55889b0b392f7ef5f The package ac-sasskit-internal was found to contain malicious code. Source: ghsa-malware...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/17 9:1 p.m.•6 views

Malicious code in material-ui-plugin-cache-endpoint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45efd49ad74d002b46224881218cf53c763e58c0b71ed3d3ff3a79d1021f3a64 The package material-ui-plugin-cache-endpoint was found to contain malicious code. Source: ghsa-malware...

5.8AI score

Exploits0References1

OSV•added 2026/04/17 10:20 a.m.•2 views

MAL-2026-2838 Malicious code in koa-v3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5868e3008cddae6f0d4f1594e5f22c25d905ca6e32b915c4b527ad2ed77cce7f The package koa-v3 was found to contain malicious code. Source: ghsa-malware 16ed2d5a3189595a73eb117e70d2a31ba6ed920704a2917c7f83aacb8b5f42d1 Any...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/04/16 8:36 p.m.•6 views

Malicious code in chai-as-optimized (npm)

chai-as-optimized is a malicious npm package that when imported downloads a C2 dropper from https://api.npoint.io/0ac7efbc0b6b1a53b305 and executes it similar to malware in to chai-await-test. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...

5.7AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by