CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Snyk•added 2025/09/15 1:24 p.m.•3 views

Embedded Malicious Code

Overview ng2-file-upload is an Angular file uploader Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a postinstall script called bundle.js that exfiltrates secrets from the affected user's accounts. These versions have been...

9.8CVSS7AI score

OSSF Malicious Packages•added 2025/09/15 1:17 p.m.•4 views

Malicious code in ng2-file-upload (npm)

The package ng2-file-upload was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in...

OSV•added 2025/09/15 1:17 p.m.•1 views

MAL-2025-47196 Malicious code in ng2-file-upload (npm)

OSSF Malicious Packages•added 2025/09/15 12:12 p.m.•4 views

Malicious code in ngx-bootstrap (npm)

The package ngx-bootstrap was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in t...

OSV•added 2025/09/15 12:12 p.m.•3 views

MAL-2025-47197 Malicious code in ngx-bootstrap (npm)

RedhatCVE•added 2025/09/08 3:12 a.m.•14 views

CVE-2025-58374

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. Versions 3.25.23 and below contain a default list of allowed commands that do not need manual approval if auto-approve is enabled, and npm install is included in that list. Because npm install executes lifecycle...

7.8CVSS8.1AI score0.00199EPSS

Exploits0References1

CVE•added 2025/09/06 2:19 a.m.•17 views

CVE-2025-58374

Summary (CVE-2025-58374): Roo Code versions 3.25.23 and earlier allow an auto-approved npm install that can execute a repository’s postinstall script, enabling arbitrary code execution. Root cause: npm install is in the default auto-approve list, so malicious postinstall scripts run without user ...

7.8CVSS7.6AI score0.00199EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2025/09/06 2:19 a.m.•3 views

CVE-2025-58374 Roo Code: Auto-approve allows npm install execution of malicious postinstall scripts

7.8CVSS7.6AI score0.00199EPSS

Exploits0References3

OSV•added 2025/09/06 2:19 a.m.•5 views

CVE-2025-58374 Roo Code: Auto-approve allows npm install execution of malicious postinstall scripts

7.8CVSS8AI score0.00199EPSS

Exploits0References5

Positive Technologies•added 2025/09/06 12:0 a.m.•6 views

PT-2025-36345

Name of the Vulnerable Software and Affected Versions: Roo Code versions 3.25.23 and below Description: Roo Code is an AI-powered autonomous coding agent. Versions 3.25.23 and below include npm install in a default list of auto-approved commands. Because npm install executes lifecycle scripts, a...

7.8CVSS7.4AI score0.00199EPSS

Exploits0References8

GithubExploit•added 2025/08/31 2:34 p.m.•157 views

Exploit for CVE-2025-55349

CVE-2025-55349 — pm2 Arbitrary Code Execution via postinstall...

8.3AI score

Exploits1

Github Security Blog•added 2025/08/27 4:42 p.m.•10 views

Malicious versions of Nx were published

Summary Malicious versions of the nx package, as well as some supporting plugin packages, were published to npm, containing code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts. Immediate Actions Required For all users, check if you were...

9.6CVSS7.8AI score0.00527EPSS

Exploits0References13Affected Software8

Snyk•added 2025/08/27 1:12 a.m.•4 views

Embeded Malicious Code

Overview @nx/workspace is an AI-first build platform that connects everything from your editor to CI. Helping you deliver fast, without breaking things. Affected versions of this package are vulnerable to Embeded Malicious Code through a malicious postinstall script that triggers a file named...

9.8CVSS7.1AI score0.00527EPSS

Snyk•added 2025/08/27 1:12 a.m.•2 views

Embeded Malicious Code

Overview @nx/key is a part of the Nx Powerpack extensions for Nx. This plugin provides the ability to activate and read licenses for Nx Powerpack Affected versions of this package are vulnerable to Embeded Malicious Code through a malicious postinstall script that triggers a file named...

9.8CVSS7.1AI score0.00527EPSS

Snyk•added 2025/08/27 1:12 a.m.•2 views

Embeded Malicious Code

Overview @nx/devkit is an AI-first build platform that connects everything from your editor to CI. Helping you deliver fast, without breaking things. This package contains a set of utilities for creating Nx plugins. Affected versions of this package are vulnerable to Embeded Malicious Code throug...

9.8CVSS7.1AI score0.00527EPSS

Snyk•added 2025/08/27 1:12 a.m.•2 views

Embeded Malicious Code

Overview nx is a The core Nx plugin contains the core functionality of Nx like the project graph, nx commands and task orchestration. Affected versions of this package are vulnerable to Embeded Malicious Code through a malicious postinstall script that triggers a file named telemetry.js. A...

9.8CVSS7.3AI score0.00527EPSS