Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/24 4:31 p.m.6 views

Malicious code in @posthog/react-rrweb-player (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7639d9bf4c377c1cb1bd2839d92cdc3ebdab0abb25b93f6b79914fc02634c2b4 The package @posthog/react-rrweb-player was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/24 4:31 p.m.7 views

Malicious code in posthog-react-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdc429049d0797390f57bc821cabd2d46fad88c5363136fc96bab4b5497000fe The package posthog-react-native was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References3
EUVD
EUVDadded 2025/11/24 4:31 p.m.4 views

EUVD-2025-198901

Malicious code in posthog-react-native npm...

6.6AI score
Exploits0References3
OSV
OSVadded 2025/11/24 4:31 p.m.3 views

MAL-2025-190926 Malicious code in posthog-react-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdc429049d0797390f57bc821cabd2d46fad88c5363136fc96bab4b5497000fe The package posthog-react-native was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References3
Snyk
Snykadded 2025/11/24 4:24 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Snyk
Snykadded 2025/11/24 4:24 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/24 12:6 p.m.5 views

Malicious code in posthog-react-native-session-replay (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2487b6f3e3f9f2ef47f2509033fe071b332f5035e1e01320482eea928ae8a120 The package posthog-react-native-session-replay was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
EUVD
EUVDadded 2025/11/24 12:6 p.m.4 views

EUVD-2025-198632

Malicious code in posthog-react-native-session-replay npm...

6.6AI score
Exploits0References4
Rows per page
Query Builder