CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

Snyk•added 2025/12/10 1:32 a.m.•1 views

Malicious Package

Overview malicius-pdf is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score

Exploits0References2

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•4 views

Malicious code in geodynamo-stop-hexo-markdown-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eca0a2915c66dd42a7b4e7dd744b1a10f4f2a0085b8213be501a8ef39cde5d35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-177949

Malicious code in markdown-pdf-jsonp-brane-cross-env npm...

6.6AI score

Exploits0

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-187165 Malicious code in geodynamo-stop-hexo-markdown-pdf (npm)

6.8AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-0718

Malware in sbrugna...

7.5CVSS7.5AI score0.00316EPSS

Exploits1References10

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-6464

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00489EPSS

Exploits1References3

OSV•added 2025/08/14 6:52 p.m.•2 views

MAL-2025-25945 Malicious code in markdown-pdf-package-seismology-prettier (npm)

The package markdown-pdf-package-seismology-prettier was found to contain malicious code...

7.2AI score

Exploits0

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•2 views

Malicious code in markdown-pdf-package-seismology-prettier (npm)

The package markdown-pdf-package-seismology-prettier was found to contain malicious code...

7AI score

Exploits0

RedhatCVE•added 2025/05/22 8:36 a.m.•4 views

CVE-2019-15138

The html-pdf package 2.2.0 for Node.js has an arbitrary file read vulnerability via an HTML file that uses XMLHttpRequest to access a file:/// URL...

7.5CVSS6.7AI score0.00316EPSS

Exploits1References1

OSSF Malicious Packages•added 2023/11/30 3:32 a.m.•3 views

Malicious code in bsd-pdf (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 930457e9326c25bced7ceddcc7a51cb3d5a90222f749dbb3eaa691413b16725c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSV•added 2023/05/09 12:0 a.m.•7 views

MAL-2023-512 Malicious code in ic_27_health_insurance_pdf_h2g28 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2cb2bdd6c456d0912ef78783cffe44a295776db00cc6fad2885922da5ab5be27 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

vulnersOsv•added 2022/11/01 12:0 p.m.•2 views

@fusuma/task-pdf (>=1.2.0 <=1.16.0), @infosupport/kc-cli (>=2.2.0 <=3.1.0) +10 more potentially affected by CVE-2022-25892 via hummus (>=1.0.104 <=1.0.110)

hummus NPM version =1.0.104, =1.2.0, =2.2.0, =1.0.0, =1.0.50, =0.0.10, =2.0.0, =1.0.0, =0.1.0, =0.1.2, =2.2.0, =0.0.7, =0.0.8 Source cves: CVE-2022-25892 Source advisory: OSV:GHSA-9CV5-4WQV-9W94...

7.5CVSS7.1AI score0.02556EPSS

Exploits0