CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2026/02/23 4:0 p.m.•9 views

Malicious code in cnnct-eaas-corre (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: oracle-using-macaron 2111dcd49405f8c078842cf7af9cfe21ddb54f558d66f2949da752d0e62cddd1 This package appears to be a typo-squatting attempt targeting connect-eaas-core...

5.3AI score

OSV•added 2026/02/23 4:0 p.m.•6 views

MAL-2026-1003 Malicious code in cnnct-eaas-corre (PyPI)

5.5AI score

OSSF Malicious Packages•added 2026/02/23 2:20 a.m.•5 views

Malicious code in npm-security-testing (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bf7ca4cfc33128c3d392d0df3b413365624b0e28a8215a7f0226ca4ec459730 The package npm-security-testing was found to contain malicious code. Source: ghsa-malware...

OSV•added 2026/02/23 2:20 a.m.•4 views

MAL-2026-997 Malicious code in npm-security-testing (npm)

OSV•added 2026/02/23 2:14 a.m.•5 views

MAL-2026-998 Malicious code in rbxm-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89cc90689ea111d792b6dc071f39e060c440f492130ef599233cf0c4526f55e4 The package rbxm-tools was found to contain malicious code. Source: ghsa-malware 8b70ded43c5def740a34e33c94903aa957ced0450fffd844a1e0f0d4122aea94 Any...

OSV•added 2026/02/22 8:34 p.m.•3 views

MAL-2026-995 Malicious code in vl-ui-contact-card (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a26177e2527de2d73ffbdd96d1ebe7113d3a9745726b1aa8fc4537813caa889 The package vl-ui-contact-card was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/02/22 8:34 p.m.•3 views

MAL-2026-990 Malicious code in vl-ui-body (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd90d73547d2e88c7a229ca9924f96c2d5e43bc5b1a8cb6b8a182d322d783510 The package vl-ui-body was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/02/22 8:10 p.m.•15 views

MAL-2026-987 Malicious code in vl-ui-accessibility (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0a7e52c3145cd55d304bb64380b4ac900f8fcda605ef0d88ad4b445709c1fa6f The package vl-ui-accessibility was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/02/22 7:59 p.m.•2 views

MAL-2026-989 Malicious code in vl-ui-alert (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e4b178c0c090ebb69682438481586f4d0c78dbcd8938f14ce595469fe3796916 The package vl-ui-alert was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/02/22 7:22 a.m.•3 views

MAL-2026-981 Malicious code in dt-fe-t2d-marketplace (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 48922e442917f5a5e22fd0e0bf4261cc99445547cfe91bfb017bc2443c2203ec The package dt-fe-t2d-marketplace was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/02/21 5:38 p.m.•6 views

MAL-2026-978 Malicious code in microsoft-cms-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c507e9ca51bd8797443e8339d9069ce7a53d5b16d99e2198f6f856fcfa5a1ecf The package microsoft-cms-client was found to contain malicious code. Source: ghsa-malware...

OSSF Malicious Packages•added 2026/02/20 7:56 p.m.•9 views

Malicious code in airbnb-identity (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 40e5d276e9f30fb5f1071927366f0f13024da90b79fdfb1967cc5bd6d2330342 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSSF Malicious Packages•added 2026/02/20 5:35 p.m.•7 views

Malicious code in rollup-plugin-polyfill-swc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae0f8211aafc83248f37c6f92d0be49953ca3a84aa2394b4aa8f5cd67f605a7e The package rollup-plugin-polyfill-swc was found to contain malicious code. Source: ghsa-malware...

Snyk•added 2026/02/20 5:35 p.m.•4 views

Malicious Package

Overview rollup-plugin-polyfill-swc is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.6AI score

Exploits0References2

OSV•added 2026/02/20 5:35 p.m.•8 views

MAL-2026-976 Malicious code in rollup-plugin-polyfill-swc (npm)

OSSF Malicious Packages•added 2026/02/20 4:59 p.m.•8 views

Malicious code in parse-compat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f14189ba3007a51617df87911f83c0c765d38bf6abe23b5aecbbe60cd8646c0a The package parse-compat was found to contain malicious code. Source: ghsa-malware 90a657719347c80f56dab387dd9beb25be7af98e9580382365a65feb0fd53243 A...

OSV•added 2026/02/20 4:59 p.m.•4 views

MAL-2026-967 Malicious code in parse-compat (npm)

OSSF Malicious Packages•added 2026/02/20 4:59 p.m.•8 views

Malicious code in locale-loader-pro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cfe4223d443a4180a9c6113449817f38d1d72fcd6f2f4cb42525dcb391c82b5 The package locale-loader-pro was found to contain malicious code. Source: ghsa-malware...