CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/20 8:18 p.m.•5 views

MAL-2026-4445 Malicious code in @signetai/signet-memory-openclaw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b16e55a5379336a0ab822ee9fe70b20023e452595f41cfe2624464aadb73d390 On plugin load, register invokes installFetchSanitizer dist/index.js:14420-14463 which monkey-patches globalThis.fetch. For requests to...

OSV•added 2026/05/20 7:35 p.m.•6 views

MAL-2026-4386 Malicious code in @elvatis_com/openclaw-cli-bridge-elvatis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ea4d389a7d7fc1ab1598f69441105d1ebe696d9d5d351f805644bded733fe7e When the OpenClaw gateway loads this plugin and starts its proxy server, code paths in dist/index.js lines 1076 and 1093 schedule outbound WhatsApp...

OSV•added 2026/05/20 7:19 p.m.•5 views

MAL-2026-4364 Malicious code in @aswinsparky/api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cceefd98563e2885501c896472471f2bb20b77103ad99c253775570cae6b4fe index.js line 11 issues a fetch to the hardcoded URL https://api.aswinsparky.qzz.io carrying values read from process.env. The destination is a...

OSV•added 2026/05/20 7:15 p.m.•3 views

MAL-2026-4195 Malicious code in instal (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 988f86dc0694b7d27a640809cef5d04ed431a36bb02bb02e69e20724a20db2b9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSV•added 2026/05/20 7:13 p.m.•5 views

MAL-2026-4499 Malicious code in bolt-delivery-menu-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cc39247db76b4edd80084e400324518739f141dafda621d368c3e5a9ac41f791 Package executes a DNS-based beacon at both install time package.json scripts.install runs node index.js and on every require of the module...

OSSF Malicious Packages•added 2026/05/20 7:12 p.m.•6 views

Malicious code in @saidddddddddd/somethingelse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 10c6c962a47a7992e9b415754433ca28aec0b867273e477fdc76acc96688554d Package ships multiple multi-file randomly-named JavaScript bundles at the tarball root dist/0wj8nina9p.js, dist/g2gldlcg6a.js, dist/k72k75nqjc.js,...

OSV•added 2026/05/20 7:12 p.m.•5 views

MAL-2026-4430 Malicious code in @saidddddddddd/somethingelse (npm)

Snyk•added 2026/05/20 7:10 p.m.•6 views

Embedded Malicious Code

Overview art-template is a simple and superfast templating engine that optimizes template rendering speed by scope pre-declared technique, hence achieving runtime performance which is close to the limits of JavaScript. At the same time, it supports both NodeJS and browser. Affected versions of th...

9.8CVSS7.6AI score0.00602EPSS

Exploits6References2

OSV•added 2026/05/20 5:58 p.m.•5 views

MAL-2026-4433 Malicious code in @self-evolving-harness/kivo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ce31b5c287727dabb5479a114843b06b80bbd75db10d74014a00db80b9b321bd The package's LLM pipeline Kivo.ingest → value-gate → OpenAILLMProvider resolves its endpoint via resolveLlmConfig in...

Snyk•added 2026/05/20 4:44 p.m.•4 views

Malicious Package

Overview iv-stubborn is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

9.8CVSS5.8AI score

OSV•added 2026/05/20 4:44 p.m.•2 views

MAL-2026-4192 Malicious code in iv-stubborn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9b8934157781e3457974f0609c54f14503424c9077b316f2e8e843e454989922 On npm install, both preinstall and postinstall lifecycle hooks execute index.js, which collects the installer's hostname, all non-internal network...

OSV•added 2026/05/20 4:44 p.m.•3 views

MAL-2026-4186 Malicious code in @doctolib-apps/native-personalized-services (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac2da4b8de2ea081f8fe7b84ef6182ab363616dc0515aaa03368bcba4a4b8e76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2026/05/20 4:44 p.m.•8 views

Malicious code in @doctolib-apps/native-personalized-services (npm)

OSV•added 2026/05/20 4:44 p.m.•2 views

MAL-2026-4191 Malicious code in iv-bloomfilter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7f2a3b58036e1174efe383ee906172b07f9ddc3410d913e51b4e614f9ff09ee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2026/05/20 2:40 p.m.•8 views

Malicious code in @limebike/frontend-core-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 36e6a8b7768f00cc5d468fe7a21f8792da1970b60e5ccbad17eefeda1a8d5b3d Package squats the @limebike npm scope and ships a preinstall/postinstall hook node index.js that, on npm install, collects hostname, non-internal...

OSV•added 2026/05/20 2:40 p.m.•5 views

MAL-2026-4187 Malicious code in @limebike/frontend-core-api (npm)

OSSF Malicious Packages•added 2026/05/20 2:11 p.m.•9 views

Malicious code in @budetzz/baileys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c79c7b873a8ea61831fdfd7b987de0efbf8944d2fd407a8dca4b70042a3d029c This package is a republished fork of @whiskeysockets/baileys that adds two undocumented network behaviors. 1 lib/Socket/newsletter.js line 111...

OSSF Malicious Packages•added 2026/05/20 1:35 p.m.•6 views

Exploits0References4

Malicious code in @limebike/supreme-data-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 018193d4f68c2fcaad63da76c3c125ed94d5a6da1efaab85147ff59efafa0b46 @limebike/supreme-data-grid occupies the @limebike npm scope private-looking namespace with placeholder metadata and a README stating 'Claimed by...

OSV•added 2026/05/20 1:35 p.m.•3 views

Exploits0References4

MAL-2026-4189 Malicious code in @limebike/supreme-data-grid (npm)