Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/13 3:23 a.m.4 views

Malicious code in levels-eris-ora-hydra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 396eb7d9acfb07e0b4d45bf71b3a83fb17f984b821fe561d455530ef55d0f946 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/12 4:47 p.m.1 views

MAL-2025-159511 Malicious code in manaf-asin-nadsbsd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a43e6618b58009974d740536db4dc7ee05f9d768fd29a37811b105d25d643d7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/12 4:29 a.m.0 views

MAL-2025-141302 Malicious code in css-loader-flare-koa-react-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 757095f6eeee22ca60e02e83c47e7f28d41da7de62f3a79bc715068c9999fbcd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 12:41 a.m.2 views

Malicious code in foolish-aqua-tick (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcf8a5339f4ea7c3b0dbd4aa60ebb29b871fa8911a1ed302d66b84a1d4a13eeb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/10 5:18 a.m.1 views

MAL-2025-54236 Malicious code in putra-mangga21-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2f8ed563f8dd6681805168fc233c55f429e894a910409e9f8775735d789b477 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Rows per page
Query Builder