Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

136678 matches found

OSV
OSVadded 2026/03/03 6:47 a.m.1 views

MAL-2026-1209 Malicious code in tailwindcss-form-bundler (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a2a9c57883700b802e8a250afb6d3e95ef2ea31ab9a699b1bf339a9843fe430 The package tailwindcss-form-bundler was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/03 6:47 a.m.5 views

Malicious code in alpha-replicator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 813b40640376929ec6b2c1eac05da3cf3248e3ad74ea5f28ec2c6770a81b039d The package alpha-replicator was found to contain malicious code. Source: ghsa-malware 2a31df37c5505c0c72366c3a25757305201aa2db41da2a774157074244006a...

5.7AI score
Exploits0References1
OSV
OSVadded 2026/03/03 6:45 a.m.4 views

MAL-2026-1193 Malicious code in cloud-apis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d014766db57fb4d6cceffc9e45821e7c14135a358abdc4db25a0310538266699 The package cloud-apis was found to contain malicious code. Source: ghsa-malware 34de661e0892c5941755ca8d9db5fbcd64da940f5b21755f4b20862a758fe769 Any...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/03 6:45 a.m.4 views

Malicious code in mongoose-apis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8158b4b1cc5affba57a810926c5765a7af056b7e89cf2ce07da0615144bac920 The package mongoose-apis was found to contain malicious code. Source: ghsa-malware b967e890598bf7e59192b0eb97d1c9ef5d00f60f2730955e684e67b3acfe888f...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/03 6:45 a.m.4 views

Malicious code in cloud-apis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d014766db57fb4d6cceffc9e45821e7c14135a358abdc4db25a0310538266699 The package cloud-apis was found to contain malicious code. Source: ghsa-malware 34de661e0892c5941755ca8d9db5fbcd64da940f5b21755f4b20862a758fe769 Any...

5.7AI score
Exploits0References1
Snyk
Snykadded 2026/03/03 6:45 a.m.3 views

Malicious Package

Overview polygon-bitquery-api is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSVadded 2026/03/03 6:41 a.m.2 views

MAL-2026-1190 Malicious code in bubblemap-bypass-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d18639f5df9977e99869d513c7daa36c9a83720ceaf920d117ae64b4e50a16eb The package bubblemap-bypass-sdk was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/03 6:39 a.m.7 views

Malicious code in consolelofy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9026237dcb17ce59b31ce42b7af60ddbe094cb955735a5dc1833275d5f01c7a The package consolelofy was found to contain malicious code. Source: ghsa-malware a251667effca1d80bd932709965abc6f6c61172812756404c3b8b2d7b340e23f An...

5.7AI score
Exploits0References1
Snyk
Snykadded 2026/03/03 6:39 a.m.1 views

Malicious Package

Overview bmath is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSVadded 2026/03/03 6:39 a.m.3 views

MAL-2026-1189 Malicious code in bmath (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b73a3f9e6d238ce5727a57fc31cba103d7e055670b067f001099b8f0c487519b The package bmath was found to contain malicious code. Source: ghsa-malware c3d39abb57e51336f455810ef3c907094fe6636bd1c6acf046edfa02720968d6 Any...

5.7AI score
Exploits0References1
Snyk
Snykadded 2026/03/03 6:38 a.m.1 views

Malicious Package

Overview monkey-tags is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snykadded 2026/03/03 6:32 a.m.1 views

Malicious Package

Overview @bookings.microsoft.com/s is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSVadded 2026/03/03 6:32 a.m.4 views

MAL-2026-1199 Malicious code in fps-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfcfad29caf018b810db804d52bcc51a3c7a58d192a3b0786578cb7d6fdc59a7 The package fps-logger was found to contain malicious code. Source: ghsa-malware 8103cf4a79c0e573f235decb21067a2c997a8a7a342f6e24419f1cbb4ee4721f Any...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/03 6:30 a.m.5 views

Malicious code in rbxm-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b87d18b7d4851f9a309124729f8c9cb9810fa99757b2c29a7687dd312ff0ca3e The package rbxm-utils was found to contain malicious code. Source: ghsa-malware 6c08866f33d2e6e36b9f6b88853ad651ccd95613b0cd6af83c894936f8713ff3 Any...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/03/03 5:29 a.m.8 views

Malicious code in ethersnog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector de2683fe026b4debb111c0d435b8f9e4b36313390f85675e0e9dd37a64c14943 The package ethersnog was found to contain malicious code. Source: ghsa-malware 7c7570bb15b95e9263e64c0289e35eed6b6778119000686b28a36bb286b15e54 Any...

5.7AI score
Exploits0References1
Snyk
Snykadded 2026/03/03 5:14 a.m.1 views

Malicious Package

Overview fhir.base.template is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
Snyk
Snykadded 2026/03/03 5:14 a.m.0 views

Malicious Package

Overview compass-e2e-tests is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSVadded 2026/03/03 5:11 a.m.2 views

MAL-2026-1178 Malicious code in hiagentevilmcp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e09d1f143c91999c7fa8d60f7aa4164df3faf284036d40e6b655020c49bdb83 The package hiagentevilmcp was found to contain malicious code. Source: ghsa-malware 209c7d8065878076cf2456b7c62417093a08c273371a3bcc6059b240be5b3223...

5.7AI score
Exploits0References1
Snyk
Snykadded 2026/03/03 5:11 a.m.1 views

Malicious Package

Overview hiagentevilmcp is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.9AI score
Exploits0References2
OSV
OSVadded 2026/03/03 5:6 a.m.4 views

MAL-2026-1177 Malicious code in graph-dynamic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8fc9e411d29d7d359cf81fe3140dc3cee9d1583e20ad8bbf32ca9fb9e6e09860 The package graph-dynamic was found to contain malicious code. Source: ghsa-malware 2662ddb0770767495266ae6388242dbeb6fd0dfde8015252228968e4d28e1ad1...

5.7AI score
Exploits0References1
Rows per page
Query Builder