CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

234867 matches found

OSSF Malicious Packages•added 2026/03/02 2:24 a.m.•8 views

Malicious code in jsnwebapptoken (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae3c045f3e6ca79915965788d10accc663e97bacc01fd6d94baa9bf781c38a0c The package jsnwebapptoken was found to contain malicious code. Source: ghsa-malware 26490b6a28e0b832aa5d386d750166e3cab2c2eb776706c9cf05fa16757758c6...

5.7AI score

Exploits0References1

OSSF Malicious Packages•added 2026/03/02 2:24 a.m.•9 views

Malicious code in daytonjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64164959c731481a5fc4117f26a4e9716c24483ac92839fc7945131c96232801 The package daytonjs was found to contain malicious code. Source: ghsa-malware 2961273f0dc9c6f1bc13bb7c4e47797f2eae23dc3dfcafbf3f58984225127c16 Any...

5.7AI score

Exploits0References1

Snyk•added 2026/03/02 2:23 a.m.•1 views

Malicious Package

Overview jslint-config is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score

Exploits0References2

Snyk•added 2026/03/02 2:20 a.m.•2 views

Malicious Package

Overview bubble-core is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

9.8CVSS5.9AI score

Exploits0References2

OSV•added 2026/03/02 2:20 a.m.•4 views

MAL-2026-1104 Malicious code in bubble-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bac16503e5a840ccf7e88977f38fac02affaa1c8eaff7f449b9832fa03cbd0a8 The package bubble-core was found to contain malicious code. Source: ghsa-malware a4122cb6b21018902fe682cf3dd31246d52f8850e8116649894d89df6f06acb2 An...

5.7AI score

Exploits0References1

OSSF Malicious Packages•added 2026/03/02 2:20 a.m.•7 views

Malicious code in formmiderable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a421f6bd77d5bfcd4d08aaedcffd8b55c430c85084ccce52372a6700eaac6d50 The package formmiderable was found to contain malicious code. Source: ghsa-malware 5d9ce26e5d5c2d433753869317d12725c4dfdb05728a86f4acf96b75f8d16d50...

5.7AI score

Exploits0References1

OSV•added 2026/03/02 2:20 a.m.•2 views

MAL-2026-1107 Malicious code in formmiderable (npm)

5.7AI score

Exploits0References1

OSSF Malicious Packages•added 2026/03/01 5:14 p.m.•13 views

Malicious code in ng-vzbootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector da191c637225627fd72d8ac07b5358e97dad12fa37eb8cd67aaff06686d5fbd6 The package ng-vzbootstrap was found to contain malicious code. Source: ghsa-malware 8e3edec659665a66e3b038b43eef43aa20405b14a4b4d47323636a8e3ae352aa...

5.9AI score

Exploits0References1

OSV•added 2026/03/01 5:14 p.m.•3 views

MAL-2026-1100 Malicious code in ng-vzbootstrap (npm)

5.9AI score

Exploits0References1

OSSF Malicious Packages•added 2026/03/01 5:38 a.m.•8 views

Malicious code in naughty-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f541502f67ae3fc0e3558f52fb3e24b3857ab7bae8d0f8b45dc077d4d06ea0f7 The package naughty-package was found to contain malicious code. Source: ossf-package-analysis...

5.9AI score

Exploits0

vulnersOsv•added 2026/03/01 1:18 a.m.•5 views

02url-querystring-http (>=1.0.1 <=1.0.4), 1-0-5-hai-aage-dekhte-hein-kya-aat-hai (>=1.0.5 <=1.0.6) +12780 more potentially affected by CVE-2026-2359 via multer (>=0.0.5 <=2.0.2)

multer NPM version =0.0.5, =1.0.1, =1.0.5, =2.0.0, =1.0.0, =1.0.0, =1.0.0, =0.0.1, =1.0.0, =1.0.3 - 6e-alpha-backend-admin =1.0.0 and more Source cves: CVE-2026-2359 Source advisory: OSV:GHSA-V52C-386H-88MC...

8.7CVSS5.4AI score0.00555EPSS

Exploits0

OSV•added 2026/02/27 8:57 p.m.•4 views

MAL-2026-1081 Malicious code in marionette-react-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbf2cb3282bede4d5ddc03ed4c435fefa92ad5b6b18f51f7d7980578ec3bcf60 The package marionette-react-view was found to contain malicious code. Source: ghsa-malware...

5.9AI score

Exploits0References1

OSV•added 2026/02/27 4:29 p.m.•2 views

MAL-2026-1078 Malicious code in socket-dgxeon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6b1cdce1957669bd7cca7bb7c90b018a87fad6ed9ea49b4874f127272f0c00d The package socket-dgxeon was found to contain malicious code. Source: ghsa-malware 0f36366d3dd38134f3c8176992483c8c67f2e502ca9b774a4ea5a3fc2d428efc...

5.9AI score

Exploits0References1

OSV•added 2026/02/27 4:29 p.m.•3 views

MAL-2026-1072 Malicious code in @dgxeon/libsignal-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 431d9b11b162e92f20bd17a9dfcc9f722baf4fb83f1d813d4f5ab29c590f837f The package @dgxeon/libsignal-node was found to contain malicious code. Source: ghsa-malware...

5.9AI score

Exploits0References1

Snyk•added 2026/02/27 4:29 p.m.•1 views

Malicious Package

Overview dgxeon-soket is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score

Exploits0References2

Snyk•added 2026/02/27 4:29 p.m.•5 views

Malicious Package

Overview sokettry is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.9AI score

Exploits0References2

Snyk•added 2026/02/27 4:29 p.m.•3 views

Malicious Package

Overview dgxeon-soket4 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score

Exploits0References2

OSSF Malicious Packages•added 2026/02/27 4:29 p.m.•6 views

Malicious code in dgxeon-soket4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c38e017a1a49fe2e8fa61441a0f35d77a1b7052475fffefecca2fa4248a54c58 The package dgxeon-soket4 was found to contain malicious code. Source: ghsa-malware 1efad9e444be88f0b8912153564d4feb2b0dff3063ec3bb5f0750731faec1057...

5.9AI score

Exploits0References1

OSV•added 2026/02/27 4:29 p.m.•1 views

MAL-2026-1076 Malicious code in dgxeon-soket3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4804daec11623ef53c11da649a8621bd07ecb9009851a230b31d0c19adbef142 The package dgxeon-soket3 was found to contain malicious code. Source: ghsa-malware e6e291783a21c3b17598b212cf3376e3ea329d11ddea7783d88a5b6031f03304...

5.9AI score

Exploits0References1

OSSF Malicious Packages•added 2026/02/27 4:29 p.m.•6 views

Malicious code in dgxeon-soket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bc1fe5368b07366735c8e9f8163262c8e77e1be50c66c9158459b89cf348cac The package dgxeon-soket was found to contain malicious code. Source: ghsa-malware 7814fe539784c04cc6450ee43c3902eab63d439030fa47b7678ccb32e8655119 A...

5.9AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by