Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/20 3:22 a.m.6 views

Malicious code in @tailwind-core/oxide-win32-x64-msvc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d93cb69a6f12f5739ab03d78641f2a79179750b6182f65ba5b8fb8ec4a1399bc The package name @tailwind-core/oxide-win32-x64-msvc impersonates the legitimate Tailwind CSS scope @tailwindcss published by tailwindlabs. The READM...

6AI score
Exploits0References1
OSV
OSVadded 2026/05/20 3:22 a.m.5 views

MAL-2026-4449 Malicious code in @tailwind-core/oxide-win32-x64-msvc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d93cb69a6f12f5739ab03d78641f2a79179750b6182f65ba5b8fb8ec4a1399bc The package name @tailwind-core/oxide-win32-x64-msvc impersonates the legitimate Tailwind CSS scope @tailwindcss published by tailwindlabs. The READM...

6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2022/06/20 8:15 p.m.3 views

Malicious code in zoom-sdk-native-addon (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6c46adede333f871f84adfafa02883ac6822b07a6f9e68d0b577ec5787d1f7d4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSVadded 2022/06/20 8:15 p.m.5 views

MAL-2022-7412 Malicious code in zoom-sdk-native-addon (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6c46adede333f871f84adfafa02883ac6822b07a6f9e68d0b577ec5787d1f7d4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Fedora
Fedoraadded 2013/07/23 1:4 a.m.15 views

[SECURITY] Fedora 19 Update: node-gyp-0.10.6-1.fc19

node-gyp is a cross-platform command-line tool written in Node.js for compi ling native addon modules for Node.js, which takes away the pain of dealing with the various differences in build platforms. It is the replacement to the node-w af program which is removed for node v0.8...

3.3CVSS2.2AI score0.00372EPSS
Exploits0
Fedora
Fedoraadded 2013/07/23 1:2 a.m.19 views

[SECURITY] Fedora 18 Update: node-gyp-0.10.6-1.fc18

node-gyp is a cross-platform command-line tool written in Node.js for compi ling native addon modules for Node.js, which takes away the pain of dealing with the various differences in build platforms. It is the replacement to the node-w af program which is removed for node v0.8...

3.3CVSS2.2AI score0.00372EPSS
Exploits0
Rows per page
Query Builder