Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/27 11:12 p.m.3 views

Malicious code in @nx/eslint (npm)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 28938ac9b6855425f3f452af308a0335a4dc5eb1c23ba08865c5cc5be914783e The nx project and associated plugins were compromised via a vulnerable GitHub workflow that allowed code injection and the theft of an NP...

7.5AI score
Exploits0References2
OSV
OSVadded 2025/08/27 11:12 p.m.2 views

MAL-2025-41440 Malicious code in @nx/key (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4a77d672a4263588b96bbf3fbf8ddbd4e1e7b6ee0bccd619a447bf9e301883b3 The package @nx/[email protected] is published under the @nx scope and ships a heavily obfuscated JavaScript file native.js using hex-mangled identifiers...

9.6CVSS5.9AI score0.0031EPSS
Exploits0References3
OSV
OSVadded 2025/08/27 11:12 p.m.2 views

MAL-2025-41441 Malicious code in @nx/node (npm)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 2af988f9c4fc2229b1c898c346bb959612eb11fe9a5065e686c47328bee221e0 The nx project and associated plugins were compromised via a vulnerable GitHub workflow that allowed code injection and the theft of an NP...

9.6CVSS7.6AI score0.0031EPSS
Exploits0References2
Rows per page
Query Builder