Malicious Package

Overview oci-console-plugin-registry is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

GHSA-QHXP-V273-G94H

creationtimestamp| type| source ---|---|--- 2025-09-14 04:33:01+00:00| seen| https://bsky.app/profile/azu.bsky.social/post/3lyrhkwlxt72c...

GHSA-JHRQ-QVRM-QR36

creationtimestamp| type| source ---|---|--- 2025-09-12 00:52:40+00:00| seen| https://bsky.app/profile/silverpill.mitra.social.ap.brid.gy/post/3lym2ckpmwpy2...

GHSA-3PVJ-Q7QJ-89FG vulnerabilities

Vulnerabilities for packages: libssh2, libssh...

CVE-2025-10157

creationtimestamp| type| source ---|---|--- 2025-09-10 17:15:33+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-f7qq-56ww-84cr...

GHSA-GCF6-VGCR-474F vulnerabilities

Vulnerabilities for packages: nodejs...

GHSA-RRJV-57MM-J6CM vulnerabilities

Vulnerabilities for packages: nodejs...

keeshond_editor (>=0.1.0 <=0.13.0), keeshond_migrator (>=0.1.0 <=0.1.1) +2 more potentially affected by unknown CVE via toodee (>=0.2.4 <=0.3.0)

toodee CARGO version =0.2.4, =0.1.0, =0.1.0, =0.10.0, =0.13.0 Source cves: unknown CVE Source advisory: OSV:GHSA-PFP7-VXGR-83PW...

GHSA-C2GV-XGF5-5CC2

creationtimestamp| type| source ---|---|--- 2025-08-27 18:57:20+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115102255675248188...

GHSA-328Q-MJP3-HWMG vulnerabilities

Vulnerabilities for packages: openjdk...

GHSA-J4M7-28V7-P4CQ vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

GHSA-36XM-WX7C-G2HQ vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

CVE-2025-55745

creationtimestamp| type| source ---|---|--- 2025-08-22 14:04:08+00:00| published-proof-of-concept| https://github.com/unopim/unopim/security/advisories/GHSA-74rg-6f92-g6wx...

GHSA-F9F8-9PMF-XV68 vulnerabilities

Vulnerabilities for packages: eksctl, nova-fips, helm-mapkubeapis, flux, istio, flux-helm-controller, istio-fips, cloudbeat-fips, k9s, zarf, envoy-gateway-fips, trivy-fips, linkerd2-fips, headlamp-fips, k8ssandra-client-fips, k8ssandra-client, trivy-operator, kube-arangodb-fips, teleport, kots,...

GHSA-XCCG-43HX-C846

creationtimestamp| type| source ---|---|--- 2025-08-14 17:02:59+00:00| seen| Telegram/2aiCe15jUeeRDLOadJeMH7VKDKBtBq9vNFQ5Yzu3yuNw...

GHSA-6Q9Q-G6RV-XHJC vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

GHSA-C9RV-F9QQ-JJVF vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk, openjdk-8-openj9, openjdk-17-openj9, openjdk-21-openj9...

GHSA-FMM9-3JQX-2M93 vulnerabilities

Vulnerabilities for packages: openjdk...

GHSA-PWQ7-2GVJ-VG9V vulnerabilities

Vulnerabilities for packages: tensorflow-cpu-jupyter...

GHSA-QX2V-8332-M4FV vulnerabilities

Vulnerabilities for packages: jujutsu, zola, linkerd-extension-init, efs-utils, mdbook, buck2, uv, pixi, shadowsocks-rust, linkerd2, linkerd2-proxy...