CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2025-176871

Malicious code in quantum-norma-canopus-dotenv-parse-variables npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•5 views

Malicious code in lepton-pyxis-aldebaran-dotenv-parse-variables (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d7ac111d3e6fc500ddc5ca2ab07f3063deb4b5b06109ccea86cde45a3ed2bf24 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-175486

Malicious code in xi-abstract-user-alert-parse npm...

EUVD-2025-179265

Malicious code in dotenv-parse-variables-heliophysics-wasat-metalsmith npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-177037

Malicious code in process-simulate-parse-integer-wind npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-176504

Malicious code in scale-parse-await-book-private npm...

EUVD-2025-178832

Malicious code in framework-writable-dotenv-parse-variables-yonder npm...

EUVD-2025-177316

Malicious code in parse-rho-wind-compress-simple npm...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-190094 Malicious code in upsilon-parse-module-virtualize-sandbox (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37a440b3c8b3c00cc296b78fcc754858117fc974f54cf17d0173de5b6c412031 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-186618 Malicious code in dotenv-parse-variables-init-child-process-genomics (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98640b4344bddcf7df3cfc9d3664fa0d315971b9d3d25520d63786b5a4be8e0c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

EUVD-2025-175848

Malicious code in uglify-parse-socket-new-error npm...

EUVD-2025-178493

Malicious code in hugo-wavefunction-dotenv-parse-variables-parallax npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in parse-kappa-void-proxy-scale (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b3590151b0daf282a28b49f4a481548cae0c6a1f81a39e16698dcd0c0d72bdb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD-2025-176221

Malicious code in star-permission-parse-assert-small npm...

EUVD-2025-177097

Malicious code in postcss-loader-bootes-dotenv-parse-variables-csv npm...