Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
šŸ”„ Daily Hot!
šŸ’ŖšŸ½ CPE Enhanced Advisories
šŸ•¶ Shadow Exploits
šŸ•µšŸ¼ Vulners CPE
šŸ” Security news
šŸ’» Exploit updates
šŸ“‘ Blogs review
šŸ§ Linux vulnerabilities
šŸž Bugbounty
šŸ¤– AI High Score
šŸ“° CVE Feed
show all

32 matches found

OSSF Malicious Packages
OSSF Malicious Packagesā€¢added 2026/05/19 6:5 p.m.ā€¢7 views

Malicious code in @bonsai-ai/claude-code (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad3b5646cf88b8eb5a7dbbec9fc2f1cfefcdf3a241d9604992e72c2f629889b9 Package published as @bonsai-ai/claude-code impersonates Anthropic's official @anthropic-ai/claude-code CLI. package.json sets author to 'Anthropic '...

5.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesā€¢added 2026/05/19 5:50 p.m.ā€¢7 views

Malicious code in @bonsai-ai/claude-code-win32-x64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6591be3fe5d0b37196562035353367d96a2bb1390d8f0f4dae3c5abbfd927f6 Package is published under the @bonsai-ai scope but impersonates Anthropic's official @anthropic-ai/claude-code-win32-x64 platform package...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesā€¢added 2026/03/03 7:19 p.m.ā€¢5 views

Malicious code in qwery-core (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c4861116d64db41be8bae04818ecc9f3542fe4bc30055d57588f6f23c11149f3 Obfuscated downloader of encrypted code, compiled to native binary. The remote URL has to be provided to the binary. Likely impersonates legitimate npm library...

6AI score
Exploits0References1
OSV
OSVā€¢added 2025/12/10 5:2 p.m.ā€¢4 views

MAL-2025-192435 Malicious code in loguru-utf8 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e20933ac001bbe12fd7962f9e12208f3224c836f3deba7669a649165232e0b78 Package clones a popular package loguru, jsonschema, .... While it claims to have some additional features, the real change is an added compiled native library...

6.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesā€¢added 2025/09/09 9:59 p.m.ā€¢3 views

Malicious code in venomenallib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4f33bd81b0b06fd056a05286d3664de55bbaff5fa8c1a54a07905e8e3b5e596a Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesā€¢added 2025/09/09 9:20 p.m.ā€¢5 views

Malicious code in denomenallib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 72b314dc6f8d89e09c9bdd5deae5f16e934e6cddcea9958ef20b43d1b7129154 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score
Exploits0References1
OSV
OSVā€¢added 2025/09/09 9:20 p.m.ā€¢4 views

MAL-2025-191716 Malicious code in denomenallib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 72b314dc6f8d89e09c9bdd5deae5f16e934e6cddcea9958ef20b43d1b7129154 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesā€¢added 2025/09/08 7:3 p.m.ā€¢7 views

Malicious code in kekovayalibka (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 62e5215c3a679298336a19cefc6971dc3ab4d26a68a1ee1b7fdafe97b7d2c8d0 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score
Exploits0References1
OSV
OSVā€¢added 2025/09/08 7:3 p.m.ā€¢2 views

MAL-2025-191773 Malicious code in kekovayalibka (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 62e5215c3a679298336a19cefc6971dc3ab4d26a68a1ee1b7fdafe97b7d2c8d0 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesā€¢added 2025/09/06 8:37 p.m.ā€¢4 views

Malicious code in xenlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e53ee4ee9935e6502ce16df23a8110b5cccba018b9c0c14279ebabc163e84265 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.9AI score
Exploits0References1
OSV
OSVā€¢added 2025/09/06 8:37 p.m.ā€¢4 views

MAL-2025-191936 Malicious code in xenlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e53ee4ee9935e6502ce16df23a8110b5cccba018b9c0c14279ebabc163e84265 Package is prepared to exfiltrate sensitive files. Different packages use different places for the malicious code: it runs during importing the module, is plac...

6.8AI score
Exploits0References1
The Hacker News
The Hacker Newsā€¢added 2023/05/31 1:18 p.m.ā€¢40 views

Critical Firmware Vulnerability in Gigabyte Systems Exposes ~7 Million Devices

Cybersecurity researchers have found "backdoor-like behavior" within Gigabyte systems, which they say enables the UEFI firmware of the devices to drop a Windows executable and retrieve updates in an unsecure format. Firmware security firm Eclypsium said it first detected the anomaly in April 2023...

7.3AI score
Exploits0
Rows per page
Query Builder