Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/13 3:23 a.m.5 views

Malicious code in tectonic-pino-pretty-build-elara (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8c0bcd2058f31fec7229382d839c7ab77d7171eb0c186dc44476d099d33ed8b5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/12 4:47 p.m.1 views

MAL-2025-170396 Malicious code in verify-ayica-amali (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2085d3d2aa4816a052b7e0a4f404c367bdafdbd859ea1bcd2e89482efd10747 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/11 4:25 a.m.2 views

MAL-2025-86468 Malicious code in historic_silkworm_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a84dd2404ad5cb50ce5bb8996b249277571208c5e594e88cab57b90b918faed This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/11 12:41 a.m.2 views

Malicious code in implicit-coffee-quelea (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80713ac28a0a287d70171707490645760a9f94c8c115d9159082276af4f8e802 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSVadded 2025/11/11 12:41 a.m.1 views

MAL-2025-70574 Malicious code in shared-gray-cattle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 651fda6b3b6e3ab7abca40dc135408b298dd8ac1943b33f5a069272538df2489 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/11 12:17 a.m.1 views

MAL-2025-66306 Malicious code in yanti-nasiuduk60-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 542dbd48ce8c0a1de9981336857f35e7629ee62e82fc7beae3adb3244c4201c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSVadded 2025/11/10 4:5 a.m.1 views

MAL-2025-51630 Malicious code in eka-gorengan18-miaww (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ebb9ff045347ddba5de434f71fc161c4026453f919ef0ebedf8e827b414d583 The package eka-gorengan18-miaww was found to contain malicious code. This package appears to be part of the tea.xyz token reward campaign that flood...

6.9AI score
Exploits0
Rows per page
Query Builder