CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/03/18 12:22 p.m.•3 views

MAL-2026-1924 Malicious code in testcatplzignore (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

5.8AI score

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-188444 Malicious code in ophiuchus-spectron-webdriver-sedna-halley (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71fa83ca1c2d7a7aaa4d2de8c7a3e5b67b553a789c8feb8c2b2f77e620a77f73 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in redshift-build-geodynamo-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8eb6dba5456ba6db7b6f8b463cbe02f3929d795d4d1027a1cbc0a88a12d75528 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 10:25 p.m.•1 views

MAL-2025-183501 Malicious code in lobac-uibg-abufavigaaute (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3da3310245e6cca2c71dcc87b5a8dd2f841748ec97c9e04d235723afb1696d5d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 10:25 p.m.•1 views

MAL-2025-181587 Malicious code in astam-akif-dak (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4857c32a5bd3b949470c99c3240ae9fa3d15dbe26b49470766177863321120dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 7:18 p.m.•2 views

Malicious code in indah-poke3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06fe34e6a9dc3d6851687cb5f05e41c5621b95ded4aaa65e6a430adbf3a0c79c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 7:18 p.m.•2 views

EUVD-2025-135312

Malicious code in tray-iutuzp-terzu npm...

OSSF Malicious Packages•added 2025/11/12 7:18 p.m.•4 views

Malicious code in sahunim-sat-fadabidantu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 34e336141c7a8b6d9d7fcd26363fbfca4d7a28ec2411a0205027d6d9107541b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-147695

Malicious code in tobrut-h-nubliesp npm...

EUVD-2025-146284

Malicious code in verify-ticul-biuyaua npm...

EUVD-2025-148597

Malicious code in tealove-dana10 npm...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•3 views

Malicious code in jurss-gasasd-16s (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1766a647e537c4090a528bac92c27544c0a72b52d88c9013a2a6b538f888ad3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:47 p.m.•0 views

EUVD-2025-147422

Malicious code in tusaaya-s1a2s-ra2fe npm...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•3 views

Malicious code in nokire-kilua64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fc6738587f0a97156be8cad98e461e70147caf89e4c030a31e70f17337c7149e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:47 p.m.•3 views

Malicious code in @miptaa02/rdagt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 21dc1c3f2ef6222b62a4cfd19ab4e3284646f3248057ae85ce94aa973c91447d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-147796

Malicious code in tehah-murasaf-manta npm...

OSV•added 2025/11/12 4:47 p.m.•3 views

MAL-2025-160296 Malicious code in messi-buysa-1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a7893fe0873ac77701c46b19138ec843951e16245e7e41f3a3999512a6364a37 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•2 views

EUVD-2025-124349

Malicious code in nodejs-mongoose-dotenv-mongoose npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-115841

Malicious code in cache-centauri-cz-conventional-changelog-upgrade npm...