Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/07/15 6:10 p.m.2 views

Malicious code in lime-thulium (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a907ea9dce24caaae763586a97ec2bbd30c827e3f5dae239e43c2094b535bfc3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/05/02 3:40 a.m.3 views

Malicious code in vanjavajs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a8417f1ff2ac3cbdce79373e2e75ebb7a69e5c4e64fdffb9627ebd274a15dfe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/07/21 10:55 a.m.3 views

Malicious code in kinesis-app-panel (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7dd10510c76746956ad05136da1660eac96ab15d204659543954a32e1673c5ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/08 9:2 a.m.3 views

Malicious code in angieslist-visitor-app-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1ce46cc5bbee18ea6a8eb9405c3bba608c6349e969eee8103f4f433ef54bd3e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder