Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2025/11/12 6:0 p.m.1 views

MAL-2025-171538 Malicious code in majidcroissant (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 763d385536495e0394f53fb4aeb9964dcb12fe8e614840470f8383681d60cb2e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/09/16 5:5 p.m.2 views

Malicious code in @operato/help (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1f6886d19c6aa1c28eb93f17ecfde91dc47019cdc7663a5dcbeba05d551c7315 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/09/16 5:5 p.m.2 views

Malicious code in @hestjs/cqrs (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c115992eefc51ff69abc88f9b1b99c8934c1d03e4a724bdb430fa22e942a45ab Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References6
OSV
OSVadded 2025/09/16 5:5 p.m.0 views

MAL-2025-47248 Malicious code in @nexe/eslint-config (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 28bbd639d7b6ddb2e3b98381bed2e182466ef9c99625b1e1c398cc37ee43f49a Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/09/16 4:12 a.m.2 views

Malicious code in @teselagen/react-list (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5eae9e0260589e145031f17078f10e631996b6420cb9494ed5c5e4f378b01c94 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/09/08 5:11 p.m.2 views

Malicious code in chalk (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 985b6546ed08c8482326a4819faec318c27c1f6d7518acdf384d5f5a8c1453aa Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/09/08 3:17 p.m.3 views

Malicious code in is-arrayish (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb234972f25697d7cb6b5fee49c919d030c6f82ca0fa9068cc69f3bed952d540 Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References5
Rows per page
Query Builder