Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 10:56 p.m.4 views

Malicious code in sole_sturgeon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e496bf79cc0533912c886bbe484ea5137c96db34f846574439ab90b9f4af63f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 7:47 a.m.3 views

Malicious code in creative_anglerfish_brown-2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5964f73b416e0c23f7895847220fb2fbd4276ebb2a8e2f2950894b65a67347af This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/11 7:26 a.m.1 views

MAL-2025-105829 Malicious code in mighty_bedbug_0xrequest (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0384ffe250467f44ce5985228918a11b72ce1cb2294de4e82ff895a18911849 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 5:18 a.m.3 views

Malicious code in funny_snake_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0c48435d102f6fde1c235927b4a3d5aeb80943325b6b088632580269d474855 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/11 5:18 a.m.2 views

MAL-2025-94891 Malicious code in hushed_monkey_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c057e80ba84a7373ceb69106e11b4689ae64a1208ffc39583cbec1206407062 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder