Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

35 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/12 12:23 a.m.4 views

Malicious code in @squawk/procedures (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3693f4ec7e3c062f3da5ea7241c2fd87d050767dea2adaee15d7be3f5c80a91a The package @squawk/procedures was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/20 4:43 a.m.4 views

Malicious code in mtpmysql (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d398ba3dd05ce79a06fb2a2433842d601f917e38ffaa3ad94c02adc1bdb3b67f The package mtpmysql was found to contain malicious code. Source: ghsa-malware 0c3a7ad80c6454678adb0b86352965523e6157aec98c3976686697663fd882e8 Any...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/13 6:48 a.m.6 views

Malicious code in @depro-tech/cortana-md (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ab02cdce682fe76e6709fc00a3df615b366f38ed30270f635ddca7b122275fc The package @depro-tech/cortana-md was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/02/04 11:44 p.m.4 views

Malicious code in react-vite-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f5300073ebcda0869cf258bc5c567c6afc40942b14d14a97bfeaa2eaff1b9c The package react-vite-sync was found to contain malicious code. Source: ghsa-malware 971cc1d747c2d072e4a3cc272143be37bbd2162968dfd682012890e87cda562...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/01/28 7:53 a.m.5 views

Malicious code in chai-as-hashed (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f41b3bfa5c5bc9d3d747e0e36e6ac8139a2735004b33987b7c3706562f0a0246 The package chai-as-hashed was found to contain malicious code. Source: ghsa-malware 0f0e1b090cb9db7ad2687185748d227939549417c35f6cf08d5ec1e7c001b37b...

5.8AI score
Exploits0References1
OSV
OSVadded 2026/01/21 4:26 a.m.4 views

MAL-2026-392 Malicious code in jsonwebauth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 683ba88a9e72aab5f114bdd388e92a35230a3fcad8178b8c8d5e5e6fddf7b829 The package jsonwebauth was found to contain malicious code. Source: ghsa-malware c1c270e023225a3ab0872fa3ea9f9b94b0320639bdaa6fb0d30e9b65c9ba1db2 An...

5.5AI score
Exploits0References1
OSV
OSVadded 2025/11/18 4:40 a.m.2 views

MAL-2025-190553 Malicious code in multi-provider-settings (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35c0e8192bbd1cdf2b9909a202886ff13811a52160d937ae1c0a762a17af288b The package multi-provider-settings was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/04/17 4:42 a.m.3 views

Malicious code in fatfingers-hellooo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea42b9a5e56641f6c3e9c1a3e1ebcb7adb7866c55d2fec0542f9fb6f2d37f6c6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/04/17 4:13 a.m.3 views

Malicious code in @bane-mlb/less-styles (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 708683cc4aa7a9a8a3e4e44563d46dd000b74ea5738e4aa8885e7f40e6990a53 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/25 7:16 a.m.2 views

Malicious code in vue-official-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 54297a016228c62dcc04040f8aaf8e680d35a868040c66105b3418e472d4fd67 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/17 5:29 a.m.3 views

Malicious code in ramp-tax-info-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0679be505671452e55b48549ce4c786016851ea54330a9bad829775f5c786c1a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/14 1:23 a.m.2 views

Malicious code in kamino-modules (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2ecb59e56c69eee3911cd10b7de6d341cf4d2f2f41bab590b44428c5bfd8348b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/01/28 1:49 a.m.3 views

Malicious code in compound-protocol (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af5d6716f9bf59535bb198a6a0def45229c19613577dde244bb2a4562790b3db Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/01/02 8:26 p.m.2 views

Malicious code in ethereumvulncontracthandler (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e0487271e4934f2a50132c6a3c30213e5a7c8fa71aa50f9d743f14a4cd00cc67 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/10/14 2:2 a.m.3 views

Malicious code in dmall (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61365c65a680ddb23f6643fcbda3617d5dd977a74254aea0634952fd69d98a21 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/09/02 1:42 a.m.4 views

Malicious code in @diotoborg/maxime-quisquam (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dd53a3740c87b6fd29c2c1302c126b37b50674e5241192a456dab98564e11783 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/09/02 1:42 a.m.3 views

Malicious code in @diotoborg/reprehenderit-nihil-veritatis (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e4fb46da2d4186c99c46a51f560fdc5426e5df814b71fe5bc556a620eca47700 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/03 6:53 p.m.2 views

Malicious code in @juiggitea/labore-perspiciatis-dolorum (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 01fc1c4bf6fa013a37ba5efb922f36505da04855a9b4e869b194ab624304908c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/01/24 8:23 p.m.2 views

Malicious code in wlwz-2312-6301 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9777bec12419943d2eba94dd01bb4d12ad72e82627353fc463db4e6527691be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2023/12/19 7:18 a.m.6 views

MAL-2023-8725 Malicious code in users-lookup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a88a9191912d31822f4b70dee7ced6454b97e1c0620c473d34e1855920c7b9b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Rows per page
Query Builder