Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

HackRead
HackReadadded 2026/03/31 1:49 p.m.4 views

Hackers Poison Axios npm Package with 100 Million Weekly Downloads

Axios npm Package compromised in a supply chain attack, exposing developers to malware, data theft, and full system takeover risks worldwide...

5.9AI score
Exploits0
EUVD
EUVDadded 2025/11/13 5:54 p.m.1 views

EUVD-2025-175354

Malicious code in worldskills npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/11/11 8:46 p.m.0 views

EUVD-2025-99216

Malicious code in erick-martabak31-riris npm...

6.6AI score
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-27597

Malicious code in bioql PyPI...

9.3CVSS6.4AI score0.00104EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/04/07 12:0 a.m.5 views

PT-2025-15232

Name of the Vulnerable Software and Affected Versions Langflow versions prior to 1.3.0 Description Langflow is susceptible to unauthenticated remote code execution due to a code injection flaw in the '/api/v1/validate/code' endpoint. A remote attacker can send crafted HTTP requests containing...

10CVSS8.3AI score0.92665EPSS
Exploits33References344
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/12/19 11:31 a.m.2 views

Malicious code in template-fullstack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 33633d723507a7bd9bbcf51856f1bcf071d699040b50df09cdc88b8c343feb36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/11/25 11:44 p.m.2 views

Malicious code in eslint-config-video-supply (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6db930f36eaed1e211ff3c4bfe705bc87e6f2b573fda13ca25fc657118d8d3b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/09/20 5:35 a.m.2 views

Malicious code in scoot-layout-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a09230af6397fced3ca15612fad365e70e995e8a83c26af0004b8e1fd8000e02 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
Rapid7 Blog
Rapid7 Blogadded 2021/09/01 1:11 p.m.72 views

New Rapid7 MDR Essentials Capability Sees What Attackers See: “It’s Eye-Opening”

The pandemic and remote work shattered your perimeter. Your attack surface has changed — and will keep changing. It’s our mission to help customers strengthen security defenses and stay ahead of evil. As the modern perimeter expands, new and old vulnerabilities emerge as open doors for attackers;...

4.3CVSS0.9AI score0.93538EPSS
Exploits9
The Hacker News
The Hacker Newsadded 2011/09/19 5:52 p.m.1 views

NeXpose 5.0 vulnerability management solution Released by Rapid7

NeXpose 5.0 vulnerability management solution Released by Rapid7 Nexpose proactively supports the entire vulnerability management lifecycle, including discovery, detection, verification, risk classification, impact analysis, reporting and mitigation. This gives organizations immediate insight int...

7.2AI score
Exploits0
Rows per page
Query Builder