Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 3:19 p.m.2 views

Malicious code in civil_salmon_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3cf4c03d3c577d410e8c204876ea7fad2ff2ec76c53c23c44f1b523548998a20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Github Security Blog
Github Security Blogadded 2022/05/24 5:8 p.m.25 views

Credential stored in plain text by BMC Release Package and Deployment Plugin

Jenkins BMC Release Package and Deployment Plugin 1.1 and earlier stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system. As of publication of this advisory, there is no fix...

4.3CVSS4.9AI score0.00031EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder