CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSSF Malicious Packages•added 2026/03/27 7:47 a.m.•5 views

Malicious code in thisismytest123 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7640ee5ded7bcafbd9863565d68a7768bdc9bd2abca56a69d73576e7e9b2c0df During installation, if run under a specific username, the package downloads and installs two executables identified as backdoors trojans. --- Category:...

5.9AI score

Exploits0References3

OSV•added 2026/03/27 4:26 a.m.•10 views

MAL-2026-2254 Malicious code in telnyx (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 64fdec8c3d81e855431dd89a2eb1008654d9d4ba0e01293166234b3609efe00a The OpenSSF Package Analysis project identified 'telnyx' @ 4.87.2 pypi as malicious. It is considered malicious because: - The package executes...

5.9AI score

Tenable Nessus•added 2026/03/27 12:0 a.m.•1 views

SUSE SLED15 / SLES15 Security Update : python-urllib3 (SUSE-SU-2026:1067-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:1067-1 advisory. This update for python-urllib3 fixes the following issue: - CVE-2025-66471: excessive resource consumption via...

8.9CVSS6.8AI score0.00533EPSS

Exploits0References5

OSSF Malicious Packages•added 2026/03/26 9:35 p.m.•3 views

Malicious code in requests-testik111 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 72561775d8d7a7c1e47c83f2a7e13ed9eeb776d05ca6924cfcceaca7cad0cfef Clones of legitimate libraries with malicious modifications intended to download malicious remote code. The remote script allows executing arbitrary files...

OSV•added 2026/03/26 9:35 p.m.•2 views

MAL-2026-2245 Malicious code in requests-testik111 (PyPI)

OSSF Malicious Packages•added 2026/03/26 8:49 p.m.•5 views

Malicious code in fluxhttp (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2669b72303bd592ba1633febc04bca1f0a8804d8546baf21b5f3f12baaa80f29 Malicious clone of a legitimate package. When using it, the code attempts to download and execute remote code. In on of the incarnations, the malicious code wa...

OSSF Malicious Packages•added 2026/03/26 8:6 p.m.•7 views

Exploits0References4

Malicious code in somepentest-test-package (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 182c836a44b13e44121972147eb66dc5d5a419513811927d1a3c7ca39be6fa4d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSSF Malicious Packages•added 2026/03/26 4:32 p.m.•2 views

Malicious code in chaostoolkit-turbulence (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0d12e5d6a53ae410fe90d76b8da4f9f117a8891e73a678c5b5f49059ad31fa6b Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSV•added 2026/03/26 4:21 p.m.•3 views

MAL-2026-2240 Malicious code in magtape (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6f476b63043b398a38eb28706575478aab4fb04820ce16d7836e726df21a1a93 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malwarebytes•added 2026/03/26 1:0 p.m.•8 views

GlassWorm attack installs fake browser extension for surveillance

GlassWorm hides inside developer tools. Once it's in, it steals data, installs remote access malware, and even a fake browser extension to monitor activity. While it starts with developers, the impact can quickly spread. With stolen credentials, access tokens, and compromised tools, attackers can...

6.1AI score

Securelist•added 2026/03/26 11:1 a.m.•4 views

An AI gateway designed to steal your data

A significant proportion of cyberincidents are linked to supply chain attacks, and this proportion is constantly growing. Over the past year, we have seen a wide variety of methods used in such attacks, ranging from creation of malicious but seemingly legitimate open-source libraries or delayed...

6.3AI score

OSV•added 2026/03/26 8:27 a.m.•3 views

MAL-2026-2233 Malicious code in lightmock (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a3c7924362f935b55a808e1ede8ffea2dbc96326b853dc00d7ede36c002ff63c Clone of a legitimate package. During import, heavily obfuscate code downloads next stages and finally exfiltrates sensitive data, including data from web...

OSV•added 2026/03/25 2:25 p.m.•7 views

GHSA-5MG7-485Q-XM76 Two LiteLLM versions published containing credential harvesting malware

After an API Token exposure from an exploited trivy dependency, two new releases of litellm were uploaded to PyPI containing automatically activated malware, harvesting sensitive credentials and files, and exfiltrating to a remote API. Anyone who has installed and run the project should assume an...

5.8AI score

Exploits0References8

OSV•added 2026/03/25 6:58 a.m.•6 views

MAL-2026-2187 Malicious code in vision-service-python-client-internal (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ea39ef97e61556ba1ef289f438f9401ced47328bd49f096401ed4795792c8f7a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSSF Malicious Packages•added 2026/03/25 6:54 a.m.•6 views

Malicious code in hy-api-utilities (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e47cae7d998d465d8ad1e4944051a42ee3cbf939476004154800628a94b828f3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSSF Malicious Packages•added 2026/03/25 6:52 a.m.•5 views

Malicious code in auth0-ai-ms-agent (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2e341dbac5b5fcd3b5a882b5ee47e26051b72bacd4d552790c684174ba0e69ae Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSSF Malicious Packages•added 2026/03/25 5:7 a.m.•4 views

Malicious code in linting (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5cb47704e5a0d8d5d241dd382567f85027854c50652bb5889cde58c2b6db00a7 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSSF Malicious Packages•added 2026/03/25 5:6 a.m.•3 views

Malicious code in yeshsurya (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 94ee8d39c76b11ebb68503181be81cfc3154ef7c1b758a9b139d77f3791c3356 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSSF Malicious Packages•added 2026/03/25 5:6 a.m.•6 views

Malicious code in facebookresearch (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b2532cd269873dbda78f99b9e22ab736c64c48ba32fa5c27deaf173fdbf33397 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...