Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 3:19 p.m.3 views

Malicious code in manual_turkey_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46bf7570293f19bc9ea3fbbac1a02484c30b5ca2a3cce8e030d7e16191724509 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 5:18 a.m.4 views

Malicious code in external_hummingbird_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33957727851be2bdad5a5c0174979e77c526dee9ec1f2fc2026265bb581727c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 5:18 a.m.0 views

Malicious code in dead_firefly_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 99e585716d875a99299bf0ba8d102490c38f0b9532480d3b2772b65f984fbbfe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/11 4:25 a.m.2 views

MAL-2025-89336 Malicious code in outrageous_duck_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fb36b508a8fcbe3a403ddf62817cfa8d9258d1974ab338751d98e182bdc5094e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/10 6:2 p.m.2 views

Malicious code in dependent_scallop_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a31a6162440c038205fd57641556e984425e8d31ab35b4219e80046875904840 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Rows per page
Query Builder