CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-175423

Malicious code in zenobia-nightwatch-rigel-javascript npm...

EUVD-2025-175852

Malicious code in uglify-js-buffer-exosphere-soap npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in procyon-andromeda-configstore-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 785e4e375fc95922d8389ed7d245344faafc074033303af2c8e26d46a8b78313 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-178581

Malicious code in heka-bootstrap-javascript-loopback npm...

EUVD-2025-178282

Malicious code in javascript-start-halley-eclipse npm...

EUVD-2025-176302

Malicious code in socket-table-grid-sigma-deserialize npm...

EUVD-2025-177036

Malicious code in procyon-andromeda-configstore-javascript npm...

EUVD-2025-175851

Malicious code in uglify-js-gatsby-mocha-titan npm...

OSV•added 2025/11/13 3:23 a.m.•3 views

MAL-2025-185505 Malicious code in apollo-nodejs-helmet-loglevel (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03f8efa0ddd24ff187a77bfbf2653e94f12a622525a7c6ac90cd8bb470c36f55 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-188325 Malicious code in nodejs-csrf-sagitta-materialize (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 55b4a0d0f7ff3dd984df6f9575fd59892f7044b99a492bdad2834ae0362abd51 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-188783 Malicious code in postcss-loader-prosthetics-loopback-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51f9f63b6e2e1816f62d699a65d1f5b8c88dc6d76c09ded78c5dca4dcc42d958 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-187251 Malicious code in gulp-javascript-carpo-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83f3fb31d46de531e486584cf860923fbaef0e8a21f7f9233132af1ea5a5ebc4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•3 views

MAL-2025-189248 Malicious code in rimraf-quantum-csv-javascript (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9909070a68830c6d663c79812a272f46e552253bfb360b94ab3ec3234e687778 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•3 views

MAL-2025-187301 Malicious code in heka-bootstrap-javascript-loopback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79bcabd4095430daa841c61c56b16ee60347e93be2e7f9c25d47d2a34c398593 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-186111 Malicious code in changelog-hugo-fusion-tectonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56370b589ac24acf0fc8bca861dd240bb702293f6a90a1ef700afbc9e61584ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...