Lucene search
K

42 matches found

OSV
OSV
added 2026/05/19 12:0 a.m.7 views

MAL-2026-4127 Malicious code in amapcn (npm)

Part of the Mini Shai-Hulud supply chain attack campaign in which a threat actor compromised the npm account atool and published 631 malicious versions across 314 npm packages in an automated 22-minute burst. Each malicious version injects a preinstall hook that executes a 498KB obfuscated Bun...

5.8AI score
Exploits0References4
OSV
OSV
added 2025/11/26 4:39 a.m.4 views

MAL-2025-191470 Malicious code in org.mvnpm:posthog-node (Maven)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security ea90a5928d7667bed4fa9f6effbbe6c8d3ad6521ca51ca2b01551bc02373a7d2 This package was compromised by the Sha1-Hulud: The Second Coming NPM worm. The malicious payload steals tokens and credentials and...

6.8AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/25 12:16 a.m.4 views

Malicious code in @antstackio/express-graphql-proxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13ae25cf8547b5efb95597b0e90ea4105e03417563ff724dd9c720c49b4c52d2 The package @antstackio/express-graphql-proxy was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/11/25 12:16 a.m.3 views

MAL-2025-191395 Malicious code in eslint-config-kinvey-flex-service (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2a9878339c2f4bb9dd2871f516aa58a93438018366470f0a023f02178420971 The package eslint-config-kinvey-flex-service was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/25 12:16 a.m.5 views

Malicious code in @voiceflow/natural-language-commander (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcffcb39c546d02117506c26844a1fddcedc61f18cd934b27642817c62189437 The package @voiceflow/natural-language-commander was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/25 12:16 a.m.6 views

Malicious code in @oku-ui/switch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 740a6698034fbce630b1da1ce44728782b3f71faffd3ee2801c45b6a3f9e6f7e The package @oku-ui/switch was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/11/25 12:16 a.m.3 views

MAL-2025-191188 Malicious code in @antstackio/express-graphql-proxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13ae25cf8547b5efb95597b0e90ea4105e03417563ff724dd9c720c49b4c52d2 The package @antstackio/express-graphql-proxy was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References3
OSV
OSV
added 2025/11/25 12:16 a.m.4 views

MAL-2025-191352 Malicious code in @voiceflow/google-types (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5dcda26e47493687c0d0abbbc7547b7f3c0e98ae3637f723272bcc4f20152b68 The package @voiceflow/google-types was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSV
OSV
added 2025/11/25 12:16 a.m.3 views

MAL-2025-191187 Malicious code in @antstackio/eslint-config-antstack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df3b34f284b315d21cd0f6b7ea57e1fc8b908ade13ffde115d3fb1f6727c7d4a The package @antstackio/eslint-config-antstack was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References3
OSV
OSV
added 2025/11/25 12:16 a.m.3 views

MAL-2025-191390 Malicious code in ceviz (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1dfb19a9ba10272dfd3ead68f0cbe940fbaef80738a39e53d44201c3aadc250 The package ceviz was found to contain malicious code. Source: ghsa-malware b6b575b73c5d275b6b6a0f81a03aade8f1e27eabc47214b4a77f300f014b6219 Any...

6.8AI score
Exploits0References4
OSV
OSV
added 2025/11/25 12:16 a.m.2 views

MAL-2025-191354 Malicious code in @voiceflow/logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8694ddb108f95b95b2ab31e65a4ff5ec96ff47c5acbbdbec749b7319fe58e3bc The package @voiceflow/logger was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSV
OSV
added 2025/11/25 12:16 a.m.4 views

MAL-2025-191358 Malicious code in @voiceflow/nestjs-mongodb (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2004e6b1248a0973eb52ceacef7b58dbf4de7c31813ea2b67f07e2788ad3205e The package @voiceflow/nestjs-mongodb was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References10
OSV
OSV
added 2025/11/25 12:16 a.m.5 views

MAL-2025-191233 Malicious code in @huntersofbook/ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 864ad7e5ee11e8337962d5e5ae089ecddbc48e77c50611aadbdab9feb097edfd The package @huntersofbook/ui was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References3
OSV
OSV
added 2025/11/25 12:16 a.m.2 views

MAL-2025-191361 Malicious code in @voiceflow/nestjs-timeout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13d9067ab95136128bf92e8d28b434d340ae4fd7cd2c8e06f3378c71c3f6f2b1 The package @voiceflow/nestjs-timeout was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References10
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/25 12:3 a.m.6 views

Malicious code in @clausehq/flows-step-sendgridemail (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 28e11e222c60736d3fbf0e7d232067bc608dbfdcb99484a13122cd9d2acd27f7 The package @clausehq/flows-step-sendgridemail was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSV
OSV
added 2025/11/24 11:50 p.m.5 views

MAL-2025-191408 Malicious code in quickswap-router-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed80b7ba4c6742a8930246967edfa6fc147fc7a52d957d93c89ce0a9258bd470 The package quickswap-router-sdk was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSV
OSV
added 2025/11/24 11:48 p.m.5 views

MAL-2025-191237 Malicious code in @ifings/metatron3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57a921621636af2528839f2d43e08f7a4c7e22700050cf93eae192678f899ef3 The package @ifings/metatron3 was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSV
OSV
added 2025/11/24 11:46 p.m.2 views

MAL-2025-191442 Malicious code in uniswap-smart-order-router (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dbda3147fde915a97ddd97f51f5ebc1757fa14bca7cad95f333862ad125c3c1 The package uniswap-smart-order-router was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
OSV
OSV
added 2025/11/24 11:45 p.m.3 views

MAL-2025-191440 Malicious code in unemail (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab85da66679658527998fff8168e3b97437350aa560bd2f9a18de4171b36cece The package unemail was found to contain malicious code. Source: ghsa-malware cd2b1b9910355ac232a34187e9264c453d615336362d4208d481cebe5ef8b250 Any...

6.8AI score
Exploits0References4
OSV
OSV
added 2025/11/24 11:42 p.m.7 views

MAL-2025-191224 Malicious code in @fishingbooker/react-swiper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06f57ab28c32fa764c92d001b6c970f064bf1c5544959b2c677d8ce8f26d3bd5 The package @fishingbooker/react-swiper was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References10
Rows per page
Query Builder