Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2025/03/23 9:3 p.m.1 views

MAL-2025-3484 Malicious code in yolov8mini (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a9222d20b84ed716d5bdf81f1da1d0f088fc7482894c8f25a5d1f757cc477ba9 On importing the module, there is an automated start of a Telegram bot capable of exfiltrating passwords from browsers, executing arbitrary commands and so on...

7.6AI score
Exploits0References1
OSV
OSVadded 2025/03/03 1:45 p.m.15 views

MAL-2025-1988 Malicious code in ransomware (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSVadded 2024/11/06 6:46 p.m.6 views

MAL-2024-11529 Malicious code in aslmutetion (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c052a3699080e1fef9f2799c9b4bd850eedd75f5fca1a3ea0dce97607fce9e49 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

7AI score
Exploits0References1
OSV
OSVadded 2024/11/06 6:46 p.m.4 views

MAL-2024-11643 Malicious code in mvdream-threestudio (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 609ae3c19c5da8545336e0466e565db2d2ff6590b1a3bc1a089f3614344969b8 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

7AI score
Exploits0References1
OSV
OSVadded 2024/10/14 9:8 a.m.5 views

MAL-2024-11627 Malicious code in luna-paysure (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d22eccc425ab8fc5afe244efb33dd6d500ea6bcdf0942a02dedb3daa9f17da51 Importing the module causes exfiltrating of IP and hostname. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anything...

7AI score
Exploits0References1
OSV
OSVadded 2024/07/26 4:53 p.m.1 views

MAL-2025-4239 Malicious code in rqeuets (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 92b72b3d477812895ac9758fb085afd1bc8840f817d7bcc491b4b36c8215e79d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:39 p.m.3 views

Malicious code in py-crd (PyPI)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/02/23 7:3 p.m.2 views

Malicious code in getgrand (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4ae61e3e8b338202de0f5b60117e11818dc1e09a233e378fc87d75bb0d8e1515 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/02/11 12:33 p.m.2 views

Malicious code in ppycodestyle (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 5fdcbe0233c3735115fcc742d326d05f28a8c4c5873601798a4410498bdd82d3 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

6.7AI score
Exploits0References1
Rows per page
Query Builder