CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

234544 matches found

OSSF Malicious Packages•added yesterday•10 views

Malicious code in uisp-connector (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7387d5655b4341cd75024769045f64a7a2e6315e948c9b2e9789c9704f48ecc7 The OpenSSF Package Analysis project identified 'uisp-connector' @ 99.0.0 npm as malicious. It is considered malicious because: - The package...

5.4AI score

Exploits0

OSV•added yesterday•4 views

MAL-2026-5287 Malicious code in uhd-setup (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 358eee34aaba61eaa93e977d35a18f35f59a56527d7c20b6e9a0bdf9c4a0a8da The OpenSSF Package Analysis project identified 'uhd-setup' @ 99.0.0 npm as malicious. It is considered malicious because: - The package...

5.4AI score

Exploits0

OSV•added 2 days ago•5 views

MAL-2026-5270 Malicious code in reactvora (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1cfcb3bd27816a88e8b3dd4f1fac5c0378232af112bf70a452056a637ce7d131 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.5AI score

Exploits0References1

OSSF Malicious Packages•added 2 days ago•5 views

Malicious code in glyphr (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc5a7daf8ce7e35afeab46185779066154602b910011e68f5241df91f164756e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.5AI score

Exploits0References1

OSV•added 2 days ago•8 views

ROOT-APP-NPM-CVE-2026-42043 CVE-2026-42043 in @rootio/axios - Patched by Root

Root has patched CVE-2026-42043 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

7.2CVSS5.8AI score0.00026EPSS

Exploits1

OSV•added 2 days ago•9 views

ROOT-APP-NPM-CVE-2026-42039 CVE-2026-42039 in @rootio/axios - Patched by Root

Root has patched CVE-2026-42039 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

7.5CVSS5.8AI score0.00031EPSS

Exploits1

OSV•added 2 days ago•7 views

ROOT-APP-NPM-CVE-2026-42037 CVE-2026-42037 in @rootio/axios - Patched by Root

Root has patched CVE-2026-42037 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

5.3CVSS5.8AI score0.00096EPSS

Exploits1

OSV•added 2 days ago•3 views

MAL-2026-5237 Malicious code in awaitly-mongo (npm)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security a6c7977dbc054cdb7fe56da0d2fbd26e2a6fed695deb4263ccbf4adfedd86acb The Miasma malware is a self-propagating worm that spreads across the npm registry by abusing weaponized binding.gyp files to achieve...

5.7AI score

Exploits0References2

OSSF Malicious Packages•added 2 days ago•6 views

Malicious code in @ethlete/core (npm)

5.7AI score

Exploits0References2

OSSF Malicious Packages•added 2 days ago•7 views

Malicious code in executable-stories-formatters (npm)

5.7AI score

Exploits0References2

OSSF Malicious Packages•added 2 days ago•8 views

Malicious code in awaitly-analyze (npm)