CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in sedna-postcss-gravity-lacerta (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4518a1db3516a32330ad1a98f283c25f4d297b1556347a4e89b67adacb66de53 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0