CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

21 matches found

OSSF Malicious Packages•added 2025/11/12 7:18 p.m.•2 views

Malicious code in polymer-tresfd-tehdteh (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d320938913497cbf477f5892104abb93ab5e06b2e960a9a602325c818230e8d6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•2 views

Malicious code in ilal-poke37 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6543636f229f4e8f325816f2d3ca64aa191d08dac12d32e662454bb940f7c614 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•2 views

EUVD-2025-124188

Malicious code in oauth-grunt-ignite-framework npm...

EUVD•added 2025/11/12 4:29 a.m.•3 views

EUVD-2025-115630

Malicious code in cassini-titan-dotenv-babel npm...

OSV•added 2025/11/11 7:31 a.m.•1 views

MAL-2025-107880 Malicious code in remaining_ocelot_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d039e5fc059112508eccf8d27b83590869f95e07b22bb979b3a3706697a1516c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/11 4:25 a.m.•2 views

Malicious code in mahesa-botok77-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1084fa677f06aa2fbc00ded9b50d2c688b53720e0e4d66df39fda4bda4e836a2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/11 3:48 a.m.•1 views

MAL-2025-81794 Malicious code in tuti-semur45-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d8afb8a307e871cb273afe12ba3dd32735bdbbc58455e517f850a4533c59216 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/10 6:2 p.m.•1 views

MAL-2025-61623 Malicious code in weird_halibut_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45f691b850d9cce465274302bcedd34c4b1f4ebbd50e73451b3b65adb40b587e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/09/05 5:10 p.m.•1 views

MAL-2025-43336 Malicious code in @zalastax/nolb-lion-lib-9 (npm)

The package @zalastax/nolb-lion-lib-9 was found to contain malicious code...

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-12187 Malicious code in @zalastax/nolb-lion-lib-w (npm)

The package @zalastax/nolb-lion-lib-w was found to contain malicious code...

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•3 views

Malicious code in falcon-zenith-ams842-project (npm)

The package falcon-zenith-ams842-project was found to contain malicious code...

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-37007 Malicious code in todlib (npm)

The package todlib was found to contain malicious code...

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•1 views

Malicious code in @zalastax/nolb-_hyr (npm)

The package @zalastax/nolb-hyr was found to contain malicious code...

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•2 views

Malicious code in @malware-test-abear-aglet-solan-sangs/test-mlw3-abear-aglet-solan-sangs (npm)

The package @malware-test-abear-aglet-solan-sangs/test-mlw3-abear-aglet-solan-sangs was found to contain malicious code...

OSV•added 2025/08/14 6:52 p.m.•2 views

MAL-2025-27831 Malicious code in npm-exploit (npm)

The package npm-exploit was found to contain malicious code...

OSV•added 2025/03/03 1:25 p.m.•2 views

MAL-2025-1800 Malicious code in epicagames-connect (npm)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2025/03/03 1:24 p.m.•2 views

MAL-2025-1789 Malicious code in editions-dev-2k-variants (npm)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2025/02/03 4:54 p.m.•2 views

MAL-2025-838 Malicious code in ig-grunt-release (npm)

--- -= Per source details. Do not edit below this line.=-...

OSV•added 2024/12/20 12:6 p.m.•3 views

MAL-2024-12070 Malicious code in yb2bacceleratorstorefront-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7d6b9ec48a872ef195c69f3ecee359b142d1f9bb683a236c67a0c96876efafd0 The OpenSSF Package Analysis project identified 'yb2bacceleratorstorefront-web' @ 1.0.0 npm as malicious. It is considered malicious because: -...

OSSF Malicious Packages•added 2024/10/09 7:4 a.m.•2 views

Malicious code in new-code-script-gt-a-samp-h-a-c-k-down-lo-ad-lkk02y (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bb0e96da27fe466eb9fbb7b1a946730e0e27214c53f611814bf4e08d5d9a17e7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by