CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

737 matches found

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in perseus-postcss-loader-thuban-cosmiconfig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01f8b923d176dbf13f318330091afc5a22441ff682eae8e7d2c7fc2859adbf1f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in ignite-morgan-postcss-loader-morgan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 69416919d6a5f042a70f254596d0ddf47863aea254d55875387e2df7ffc3ebe3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-116522

Malicious code in ariel-bellatrix-postcss-loader-jekyll npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in arcturus-toml-carpo-postcss-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8147de9a6ba9892bbef8fb92f6494108d9eeabd8b916bf2676a4467a322ec14 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-123648

Malicious code in playwright-bellatrix-postcss-loader-query npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-114575

Malicious code in deneb-bootes-postcss-webdriver-mocha npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-112593

Malicious code in ignite-morgan-postcss-loader-morgan npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-124040

Malicious code in ora-electron-builder-postcss-umbra npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-113911

Malicious code in eslint-config-galaxy-postcss-loader-meissa npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-123512

Malicious code in postcss-loader-semantic-release-slides-buffer npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in postcss-postcss-package-impulse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 808dfa2a9e301a31de471bb99a322bb7a4f31937ab1e579f9a02a33d25e30287 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in postcss-google-prompts-commitizen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 68e3cebc126d02237fd746fc3461146e32650856c04c1abdad20a0015402fb7d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in postcss-magellan-ursa-zenobia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fce8458ed2741ec54d9c40e4518395ab915bd46356a551b9e18b8511ef6e3f8c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-124538

Malicious code in neptune-stream-toml-postcss-loader npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in postcss-neptune-ursa-nextjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5cb77aec177aa08941fff2e38a90f659895d77f4a2d68453f8a9c1bf244d1376 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in postcss-loader-fork-levels-venus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6eeb87c440bcb3eff380092f73c31bd01232d896ff500023793df85c072d0644 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-123534

Malicious code in postcss-eslint-semantic-ui-metalsmith npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-123118

Malicious code in publish-postcss-blaze-buffer npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-121505

Malicious code in sync-envconfig-apollo-postcss npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-115104

Malicious code in concurrently-firebase-remark-postcss-loader npm...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by