Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2043 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/06/03 11:30 a.m.2 views

Malicious code in javascript-appfabric-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9f8b7cd0cdd29ede135536b1e9ca802d8bfd2343e149fb7fd4ff7de38a4d1813 The OpenSSF Package Analysis project identified 'javascript-appfabric-logger' @ 966.0.0 npm as malicious. It is considered malicious because: -...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/06/01 12:51 p.m.3 views

Malicious code in gd-company-updates (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c1253df2e743d9b41ff76588069c9ee739cc67b4ca244e95405d4b949bcdfb2b The OpenSSF Package Analysis project identified 'gd-company-updates' @ 14.999.0 npm as malicious. It is considered malicious because: - The...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/31 12:31 p.m.4 views

Malicious code in chartjs-2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0694218023b99a066388095e0c9d8de4e8d09473cc88abac25165435e4a5d7d2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/30 6:47 p.m.1 views

Malicious code in coveo-101-commerce (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fc0cdf6355009bbf0e2512408fb6f96d5c1febe666618b3aece404301afc171f The OpenSSF Package Analysis project identified 'coveo-101-commerce' @ 3.0.0 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
OSV
OSVadded 2023/05/30 3:51 a.m.9 views

MAL-2023-1085 Malicious code in @mddsfmsdflm/itemselector (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 88f4e295b9c4b793c8ffbdc4077606b6d5b61c41ab83b85bda2b46680c678174 The OpenSSF Package Analysis project identified '@mddsfmsdflm/itemselector' @ 103.0.9 npm as malicious. It is considered malicious because: - Th...

7.3AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/29 12:0 a.m.3 views

Malicious code in cptalertbox (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 88c1f10ff1d7a9b89a479bd30b9548a7adc533c677f7913c88563b08e9d28814 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ossf-package-analysis...

7.4AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/27 12:0 a.m.3 views

Malicious code in mintel-tokens (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 13b8e3e53b1d2298f3798c2348d1caa9ccbbf59e520e7f67897fe51f6d9591ba Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

7.2AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/27 12:0 a.m.3 views

Malicious code in mintel-navigation (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 03a09fa2fc3578a5c0280069c7cd04c797a86836c205896be3dc0fb53c5b3353 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

7.2AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/27 12:0 a.m.3 views

Malicious code in mintel-react-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0a1835239b54b7888436777e7e123e588fdbf2fe1ca95d9162e6803d5027515e Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

7.2AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/25 10:23 a.m.2 views

Malicious code in test-op-solhint (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f8f315fe20128ae26be541522255c4eeab47ec166f70e54ca5a2c6cb533ae67 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/21 5:16 a.m.2 views

Malicious code in uurl-search-params (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4d4a4d5977377ebf7c79b1bcb7c824cb6f1bb64c2151b065d2e189c27638d15d The OpenSSF Package Analysis project identified 'uurl-search-params' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/17 1:5 p.m.4 views

Malicious code in pandasprox (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 09102fb6db10bc8a136ca7a902415e21c97a31cbf416c904a7efc49a10757320 The OpenSSF Package Analysis project identified 'pandasprox' @ 0.1.9 pypi as malicious. It is considered malicious because: - The package execut...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/14 5:20 a.m.4 views

Malicious code in gkjzjh146 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e2431c5b39467f95f9010ec4bdf29d10e4590cef754a0b41b3057c8a30551fe5 The OpenSSF Package Analysis project identified 'gkjzjh146' @ 1.3 pypi as malicious. It is considered malicious because: - The package executes...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/13 12:0 a.m.3 views

Malicious code in maddy_test (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx edb288f616afccdf20ab32d24f5f0616b0b2b91bcdb3d8f0d8bd60e1adbe6b0a Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

7.2AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/12 2:49 a.m.3 views

Malicious code in hyrule-react-commons (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3b82bec5139c178e3b425e5e458a9c7b248b17db5192cf6178702cbb26822dba The OpenSSF Package Analysis project identified 'hyrule-react-commons' @ 2.0.1 npm as malicious. It is considered malicious because: - The packa...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/10 2:53 a.m.2 views

Malicious code in stripe-deep-deep (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e7158c510e35fd6474a199140be8247cbefc73f5020d7a443927d22a7b555573 The OpenSSF Package Analysis project identified 'stripe-deep-deep' @ 1.0.1 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/05 2:45 p.m.3 views

Malicious code in pmcrypto-v7-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis aa2e150fa7626c456fcd88a95dd114616578c8bf69b9cf9c772d3858a051b6ba The OpenSSF Package Analysis project identified 'pmcrypto-v7-test' @ 1.999.0 npm as malicious. It is considered malicious because: - The package...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/05 10:57 a.m.3 views

Malicious code in suncorp-styleguide-react-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b6a39ac171632a984b8ac8c3e53ab935e47753ac7e0df7161daa7bc23f8e08d The OpenSSF Package Analysis project identified 'suncorp-styleguide-react-components' @ 102.0.0 npm as malicious. It is considered malicious...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/02 11:0 a.m.3 views

Malicious code in staging-opbox-web-browser (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fbd6d4cfbb58ae5a7f14b26eb9cf8b4f593b5542ada8603e96b5c6edf7ebe211 The OpenSSF Package Analysis project identified 'staging-opbox-web-browser' @ 99.0.0 npm as malicious. It is considered malicious because: - The...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/05/01 12:50 p.m.2 views

Malicious code in tempomati-omega-5-emcuf5 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f86820db1cc72b3ab2076578417815de7e0bc83b54e954f68b41a7adf28dd66 The OpenSSF Package Analysis project identified 'tempomati-omega-5-emcuf5' @ 1.0.1 npm as malicious. It is considered malicious because: - The...

7.1AI score
Exploits0References1
Rows per page
Query Builder