CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/02/06 2:7 a.m.•3 views

MAL-2026-777 Malicious code in ac-dom-events (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f238a5b77b3e11372b1aa3ce3a92c8faf8ec01536ec65004a05051de2ec306c The package ac-dom-events was found to contain malicious code...

5.3AI score

OSV•added 2026/02/05 9:21 p.m.•4 views

MAL-2026-773 Malicious code in ethers-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 315365a10d9e3322792c18bdb8c5a8e620bbcc2a9ad8d5a1d5ef139ef6e47777 The package ethers-lint was found to contain malicious code. Source: ossf-package-analysis...

OSSF Malicious Packages•added 2026/02/05 5:28 p.m.•7 views

Malicious code in https-servers (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a36dcc502283d554435cbf1426fd49634a8889c0839134cb84847739226aee3b The package https-servers was found to contain malicious code. Source: ghsa-malware 36ca75a183037ab06a63d3ba308f3fe6f3207772c7b77df966768e3f10e15c00...

Snyk•added 2026/02/05 2:54 p.m.•3 views

Malicious Package

Overview chai-as-advanced is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score

Exploits0References2

OSV•added 2026/02/05 2:54 p.m.•4 views

MAL-2026-764 Malicious code in chai-as-advanced (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0acc3e9150ffbd93c9187a1ce93c58d03d138fa530829012be29aefc6ba148db The package chai-as-advanced was found to contain malicious code. Source: ghsa-malware 83db7b7b5304fb643d201e46d499c0b6c8e87a25bc93609bb4c704cd9aa8b2...

Wolfi•added 2026/02/05 1:49 p.m.•7 views

CVE-2026-25547 vulnerabilities

Vulnerabilities for packages: node-gyp, npm, renovate, lerna, sqlpad, pulumi...

9.2CVSS7.1AI score0.00481EPSS

Snyk•added 2026/02/05 12:44 p.m.•3 views

Malicious Package

Overview @helloflex/widget-next-sdk is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.4AI score

Exploits0References2

OSV•added 2026/02/05 12:44 p.m.•4 views

MAL-2026-760 Malicious code in @helloflex/widget-next-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0ca9fce3cc7390ed9fa54426eb0404651c2679a146b83aaf537d0d4c4cf9ba2c The package @helloflex/widget-next-sdk was found to contain malicious code. Source: ghsa-malware...

OSSF Malicious Packages•added 2026/02/05 2:24 a.m.•10 views

Malicious code in internallib_v157 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d07f4a0d2270cdcb827bb50e9f546d7c4ab3b07ede66343b90478831a731b83 The package internallibv157 was found to contain malicious code. Source: ghsa-malware 2a4eddb6af3191b7183a9223407a3a1b9fb4e1b4e96da5ee15af1ae2f0515ac...

OSV•added 2026/02/05 2:3 a.m.•5 views

MAL-2026-758 Malicious code in tailwindcss-forms-starter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91e47d3466ef7beca3f6d4cc16c77c91c52a3d29dbbe4d484fcf3e2397f18d2c The package tailwindcss-forms-starter was found to contain malicious code. Source: ghsa-malware...

OSSF Malicious Packages•added 2026/02/05 1:58 a.m.•11 views

Malicious code in cat-retail-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28595a83aef3c3c9726d6ab0fc4b4d761a0a0c9f12ac91d4d84bda7135d46786 The package cat-retail-app was found to contain malicious code. Source: ghsa-malware b05f145df7999baec69425a057fe9a33c6a65726ca898c89b80cb23526f54bae...

OSV•added 2026/02/05 1:58 a.m.•5 views

MAL-2026-756 Malicious code in cat-retail-app (npm)

OSSF Malicious Packages•added 2026/02/05 1:57 a.m.•9 views

Malicious code in @jes4l/react-pkg (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dbda4aa24c8a13be0d237b206780fc2feb5778e65cebf430e2124e49a390cdde The package @jes4l/react-pkg was found to contain malicious code. Source: ghsa-malware 2bd5520cca8e57269ded7f69993dc5257f9085a6706d01d7bc60b17ec80534...

OSV•added 2026/02/05 1:50 a.m.•4 views

MAL-2026-751 Malicious code in express_update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28c7b65df1b37b94c79306e3445abeee20ff9f0b8757efec76a2c3ae2a258e78 The package expressupdate was found to contain malicious code. Source: ghsa-malware e6705fb6bba3859557f5fcc5e759b38a88a71c878260762672e3e161afde2c0e...

OSSF Malicious Packages•added 2026/02/05 1:50 a.m.•11 views

Malicious code in log-symbols_updated (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92d79723570a5dc0d85c63b9ed1ab129a1be11ac69a75c1d2bd8c5cdcc12f6d3 The package log-symbolsupdated was found to contain malicious code. Source: ghsa-malware...

OSSF Malicious Packages•added 2026/02/05 1:50 a.m.•9 views

Malicious code in locate-path_updated (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f73581936729923d61e5195115627693c9929bc048b9900da7dee76db9b6b37b The package locate-pathupdated was found to contain malicious code. Source: ghsa-malware...

OSV•added 2026/02/05 1:50 a.m.•4 views

MAL-2026-752 Malicious code in locate-path_updated (npm)

OSV•added 2026/02/04 11:44 p.m.•5 views

MAL-2026-747 Malicious code in react-vite-sync (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f5300073ebcda0869cf258bc5c567c6afc40942b14d14a97bfeaa2eaff1b9c The package react-vite-sync was found to contain malicious code. Source: ghsa-malware 971cc1d747c2d072e4a3cc272143be37bbd2162968dfd682012890e87cda562...