CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

152 matches found

OSSF Malicious Packages•added 2024/07/11 1:16 a.m.•4 views

Malicious code in sap-advanced (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b44915bb9e2db1c39c412b6eafce4e28d360737be9e0a62b77d95c39f99f4c9e The OpenSSF Package Analysis project identified 'sap-advanced' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2024/07/11 12:58 a.m.•3 views

Malicious code in sap-activation (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8ede7025f37f71f86c3d2f05193b60a291c6ab41c478fc2b90719134ada73cfe The OpenSSF Package Analysis project identified 'sap-activation' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...

OSV•added 2024/07/11 12:56 a.m.•4 views

MAL-2024-7486 Malicious code in sap-act (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 221d8d0fa70183e7db924b26c6bc4cf81969dc2b328c3b38ab1473605dc1caa7 The OpenSSF Package Analysis project identified 'sap-act' @ 0.0.0 npm as malicious. It is considered malicious because: - The package communicat...

OSSF Malicious Packages•added 2024/07/06 11:24 a.m.•3 views

Malicious code in @fake-registry/b (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 47be0b354748c2d14abc42bdd335e4da22324a65c300d85b0fe522705c8e0661 The OpenSSF Package Analysis project identified '@fake-registry/b' @ 4.0.0 npm as malicious. It is considered malicious because: - The package...

OSV•added 2024/07/03 9:6 a.m.•8 views

MAL-2024-7089 Malicious code in cra-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e49ccaa79a7296b7f1237beb3210cabf6610aab5c68e2c349b1fff4d3b2bb332 The OpenSSF Package Analysis project identified 'cra-docs' @ 7.999.45 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2024/07/01 2:35 a.m.•3 views

Malicious code in blue-oval-theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c708f4696b33e43ba9ca5b70bafa9ac82b1ee694df0caa84f7283885ff8d5544 The OpenSSF Package Analysis project identified 'blue-oval-theme' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2024/06/25 12:42 p.m.•3 views

Malicious code in example-arc-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 313fe2f7f49471a9351eff38bafe5bf3968444661867230198924b55a3e94909 The OpenSSF Package Analysis project identified 'example-arc-server' @ 100.0.2 npm as malicious. It is considered malicious because: - The packa...

OSSF Malicious Packages•added 2024/06/25 12:30 p.m.•3 views

Malicious code in business-kpi-manager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d40c2ea693da70760733dd3ec3fd7dd594c8c49c6e937ec9699b9ec831cc960e The OpenSSF Package Analysis project identified 'business-kpi-manager' @ 4.0.4 npm as malicious. It is considered malicious because: - The packa...

OSSF Malicious Packages•added 2024/05/02 11:36 a.m.•3 views

Malicious code in epc-primer-ui-tags (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cfb923577e57629ff06e092f23f6da4b29067756b213c6e923154649d8f93aca The OpenSSF Package Analysis project identified 'epc-primer-ui-tags' @ 66.6.9 npm as malicious. It is considered malicious because: - The packag...

OSV•added 2024/04/02 9:22 p.m.•5 views

MAL-2024-1169 Malicious code in qlik-sense-dev (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 65fd03500a82dc6ac997cdeb7275cc6c67cae34d382b293886407c96166bc357 The OpenSSF Package Analysis project identified 'qlik-sense-dev' @ 5.9.991 npm as malicious. It is considered malicious because: - The package...

OSV•added 2024/04/02 7:6 p.m.•7 views

MAL-2024-1168 Malicious code in qlik-sense-poc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e3ca1728f46e0ecfd22305ab1dd8de7134e1d067e7c76f5d9e4871424fbf9148 The OpenSSF Package Analysis project identified 'qlik-sense-poc' @ 5.5.991 npm as malicious. It is considered malicious because: - The package...

OSV•added 2024/03/31 1:11 a.m.•7 views

MAL-2024-1176 Malicious code in optus-sport-ctv (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7e77d4e5b4d39f3120c7742b9d7a7e79b69f2d5a5ed122b1f57add9d3564a752 The OpenSSF Package Analysis project identified 'optus-sport-ctv' @ 99.3.0 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2024/03/31 12:55 a.m.•3 views

Malicious code in amcharts-accessibility-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3d8c46b66a30d5f77349bdbe5c55b3412346a1b9ee26009a3ee535cdcf1e1677 The OpenSSF Package Analysis project identified 'amcharts-accessibility-plugin' @ 99.3.0 npm as malicious. It is considered malicious because: -...

OSV•added 2024/03/26 11:55 p.m.•10 views

MAL-2024-1156 Malicious code in commandlib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 64d4a50bf3fdea05ae20a06941d278f50e75d47cacc332a89a31934b2cdef5c0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Exploits0References1

OSV•added 2024/03/19 12:40 a.m.•18 views

MAL-2024-1129 Malicious code in espn-react-oneid (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 4692f32d575cbdbf797aea5aabd0d50c4015884bfac1ce7b40006443bd8759f6 The OpenSSF Package Analysis project identified 'espn-react-oneid' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

OSV•added 2024/03/17 5:25 a.m.•13 views

MAL-2024-1105 Malicious code in lyft-settings (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 11c2890ec2321b818585ae36669c7c7b9b8b88d0b0b4c7b47679988a9908c569 The OpenSSF Package Analysis project identified 'lyft-settings' @ 5.9.1 pypi as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2024/03/08 2:2 p.m.•3 views

Malicious code in ycs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8fcf222dfcf6f0f36588b0c11a3e0fd28bac1b86cccc3eac8afb5f9243afffb7 The OpenSSF Package Analysis project identified 'ycs' @ 3.9.9 npm as malicious. It is considered malicious because: - The package communicates...

OSSF Malicious Packages•added 2024/03/03 11:23 a.m.•3 views

Malicious code in testien1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis dfd0b0e3c7d3359aa58759eee0924f42ff5a20aedc9be9bfcffe246fd5de6eda The OpenSSF Package Analysis project identified 'testien1' @ 1.0.0 npm as malicious. It is considered malicious because: - The package executes...

OSSF Malicious Packages•added 2024/02/10 7:15 p.m.•3 views

Malicious code in crumpet (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 42425457cf6a4b96a2353dfbbab52426f6a871b0db230861f31e6b68513b37da The OpenSSF Package Analysis project identified 'crumpet' @ 1.0.4 npm as malicious. It is considered malicious because: - The package communicat...

OSV•added 2024/01/30 3:11 p.m.•6 views

MAL-2024-946 Malicious code in dragon7-dc-vulntest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7fbbb2c388456ad9304f06570c8ddd459764422103836f0fac928c631d96cfec The OpenSSF Package Analysis project identified 'dragon7-dc-vulntest' @ 6.6.6 npm as malicious. It is considered malicious because: - The packag...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by