CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-113798

Malicious code in event-fetch-epimetheus-writable npm...

EUVD-2025-116778

Malicious code in alphard-fetch-corvus-command npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in fetch-chalk-mysql-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4eb1790d821ab22ac99c85478c2c0c64e0fa842b8042826889b140dcf3a613c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in jasmine-fetch-standard-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83c5b2a64e133eb436cf9d493d5f98ad2e3d60e9c56f7f4bbe9dd7a9bedb5315 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in development-heka-fetch-deimos (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2fc34f1ad0167ae7f5840b129cbff77369019cb49cf1497dfc4cd4c540ecfb8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•2 views

EUVD-2025-113657

Malicious code in fetch-puppeteer-bootstrap-axios npm...

EUVD-2025-111585

Malicious code in loop-ophiuchus-fetch-antares npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in octans-venus-fetch-capella (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7185ffd095e4f4b31889ffa376123541f96ad34c8939f74a4f4ab17f5905aea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in config-izar-fetch-local (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f5a2d8fc86c6915594384794a9189606b65ba1f652cdae1d45debe45640afba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-113650

Malicious code in fetch-virgo-pegasus-phoenix npm...

EUVD-2025-124298

Malicious code in non-blocking-start-sequelize-fetch npm...