Lucene search
K

1875 matches found

Snyk
Snyk
added 2026/03/06 7:14 a.m.7 views

Malicious Package

Overview @toloka-tb/core is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score
Exploits0References2
Snyk
Snyk
added 2026/03/06 7:14 a.m.7 views

Malicious Package

Overview @saferpay/logging is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/03 8:21 a.m.22 views

Malicious code in pdfjs-dist-v5 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e5827ccd19d073818da31059d76a725b171d1fc793a4f2591ed0118a35b46c35 The package pdfjs-dist-v5 was found to contain malicious code. Source: ossf-package-analysis...

5.8AI score
Exploits0
Snyk
Snyk
added 2026/03/03 6:32 a.m.4 views

Malicious Package

Overview fps-logger is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2026/03/02 3:48 p.m.1 views

Malicious Package

Overview yuji-baileys is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2026/03/02 2:22 a.m.2 views

Malicious Package

Overview bee-quarl is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snyk
added 2026/02/27 4:13 p.m.1 views

Malicious Package

Overview @skyzopedia/baileys is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/26 10:17 a.m.7 views

Malicious code in undicy-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e5df89180b140f5106db0b74f5ee04330236214094173880f7baf0fd47088a8 The package undicy-lint was found to contain malicious code. Source: ghsa-malware 2713794393ff885438b3aa1cc6dc97cff34cd42825c28e917bf8ec24ee704ff7 An...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/02/22 8:34 p.m.6 views

MAL-2026-988 Malicious code in vl-ui-action-group (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 681eef2c6f7a9061c23f448a351fbf64b8d5302e6343f486e534c4a440b1e793 The package vl-ui-action-group was found to contain malicious code. Source: ossf-package-analysis...

5.8AI score
Exploits0
Snyk
Snyk
added 2026/02/20 4:56 p.m.3 views

Malicious Package

Overview iru-caches is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/02/11 3:13 p.m.4 views

Malicious Package

Overview systemtest-network is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.5AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/10 5:53 p.m.4 views

CVE-2026-21318 After Effects | Out-of-bounds Write (CWE-787)

After Effects versions 25.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00184EPSS
Exploits0References1
Microsoft Secure
Microsoft Secure
added 2026/02/09 5:12 p.m.8 views

A one-prompt attack that breaks LLM safety alignment

Large language models LLMs and diffusion models now power a wide range of applications, from document assistance to text-to-image generation, and users increasingly expect these systems to be safety-aligned by default. Yet safety alignment is only as robust as its weakest failure mode. Despite...

5.7AI score
Exploits0
Snyk
Snyk
added 2026/02/06 2:44 p.m.2 views

Malicious Package

Overview web3-sinon is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.4AI score
Exploits0References2
Snyk
Snyk
added 2026/02/06 7:7 a.m.5 views

Malicious Package

Overview syf-api is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.4AI score
Exploits0References2
Snyk
Snyk
added 2026/02/06 7:6 a.m.2 views

Malicious Package

Overview syf-typings is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

9.8CVSS5.4AI score
Exploits0References2
OSV
OSV
added 2026/02/05 2:22 p.m.6 views

MAL-2026-761 Malicious code in digital-checkout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3254d2b582a5e3da6587b8994dab665d74a70e88b0383d6dd0d5f96d82e7a33 The package digital-checkout was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/04 9:21 a.m.10 views

Malicious code in deuro-landing-page (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b21bff5e6829c4c257d34d4ad60dd2d5d85f4f6fc67fdffaf74c86bb600ff7cb The package deuro-landing-page was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score
Exploits0
Snyk
Snyk
added 2026/02/03 5:41 p.m.4 views

Malicious Package

Overview js-unpack is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.4AI score
Exploits0References2
Snyk
Snyk
added 2026/02/03 7:56 a.m.5 views

Malicious Package

Overview fileupload-util is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score
Exploits0References2
Rows per page
Query Builder