Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4919 matches found

EUVD
EUVDadded 2025/11/25 9:21 a.m.4 views

EUVD-2025-199595

Malicious code in react-svgs-helper npm...

6.6AI score
Exploits0References1
OSV
OSVadded 2025/11/25 9:21 a.m.3 views

MAL-2025-191462 Malicious code in react-svgs-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 081ba740ebfdae5dfc4f53bf53b7658227f6fc78a9c8866727d95d2467991f3e The package react-svgs-helper was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/25 9:21 a.m.8 views

Malicious code in react-svgs-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 081ba740ebfdae5dfc4f53bf53b7658227f6fc78a9c8866727d95d2467991f3e The package react-svgs-helper was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References1
Snyk
Snykadded 2025/11/25 9:21 a.m.4 views

Malicious Package

Overview react-svgs-helper is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
EUVD
EUVDadded 2025/11/25 12:16 a.m.4 views

EUVD-2025-199387

Malicious code in @voiceflow/stitches-react npm...

6.6AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/25 12:16 a.m.6 views

Malicious code in @voiceflow/stitches-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06695269b63d5e1d5d67fbf2ec3e8ba8a46439f10a30ca584e674ad93dbf53f1 The package @voiceflow/stitches-react was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/25 12:16 a.m.8 views

Malicious code in @voiceflow/react-chat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7450440b7c3368ef719fcfa9511d7984fc38ed8b5279f4e49f414f588446915e The package @voiceflow/react-chat was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
EUVD
EUVDadded 2025/11/25 12:16 a.m.4 views

EUVD-2025-199395

Malicious code in @voiceflow/react-chat npm...

6.6AI score
Exploits0References3
OSV
OSVadded 2025/11/25 12:16 a.m.3 views

MAL-2025-191367 Malicious code in @voiceflow/react-chat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7450440b7c3368ef719fcfa9511d7984fc38ed8b5279f4e49f414f588446915e The package @voiceflow/react-chat was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
GitLab Advisory Database
GitLab Advisory Databaseadded 2025/11/25 12:0 a.m.6 views

@actbase/react-native-actionsheet contains malware after npm account takeover

On November 24th 2025, a new supply chain attack called Shai-Hulud 2.0 was launched. This package contains the malicious code that attempts to harvest credentials and infect GitHub and npm repositories. The malicious software executes during the pre-install phase and attempts to harvest credentia...

7.1AI score
Exploits0References3Affected Software1
GitLab Advisory Database
GitLab Advisory Databaseadded 2025/11/25 12:0 a.m.9 views

@actbase/react-native-fast-image contains malware after npm account takeover

On November 24th 2025, a new supply chain attack called Shai-Hulud 2.0 was launched. This package contains the malicious code that attempts to harvest credentials and infect GitHub and npm repositories. The malicious software executes during the pre-install phase and attempts to harvest credentia...

7.1AI score
Exploits0References3Affected Software1
GitLab Advisory Database
GitLab Advisory Databaseadded 2025/11/25 12:0 a.m.11 views

@actbase/react-native-kakao-channel contains malware after npm account takeover

On November 24th 2025, a new supply chain attack called Shai-Hulud 2.0 was launched. This package contains the malicious code that attempts to harvest credentials and infect GitHub and npm repositories. The malicious software executes during the pre-install phase and attempts to harvest credentia...

7.1AI score
Exploits0References3Affected Software1
GitLab Advisory Database
GitLab Advisory Databaseadded 2025/11/25 12:0 a.m.9 views

@actbase/react-native-tiktok contains malware after npm account takeover

On November 24th 2025, a new supply chain attack called Shai-Hulud 2.0 was launched. This package contains the malicious code that attempts to harvest credentials and infect GitHub and npm repositories. The malicious software executes during the pre-install phase and attempts to harvest credentia...

7.1AI score
Exploits0References3Affected Software1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/24 11:45 p.m.8 views

Malicious code in @hover-design/react (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50c066ac501de3af9fd156e23b5fb0317b633da301c4cf66b12f2ae8429e0970 The package @hover-design/react was found to contain malicious code. Source: ghsa-malware...

6.9AI score
Exploits0References4
OSV
OSVadded 2025/11/24 11:45 p.m.3 views

MAL-2025-191227 Malicious code in @hover-design/react (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 50c066ac501de3af9fd156e23b5fb0317b633da301c4cf66b12f2ae8429e0970 The package @hover-design/react was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
EUVD
EUVDadded 2025/11/24 11:42 p.m.7 views

EUVD-2025-199314

Malicious code in @fishingbooker/react-swiper npm...

6.6AI score
Exploits0References4
OSV
OSVadded 2025/11/24 11:42 p.m.4 views

MAL-2025-191224 Malicious code in @fishingbooker/react-swiper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06f57ab28c32fa764c92d001b6c970f064bf1c5544959b2c677d8ce8f26d3bd5 The package @fishingbooker/react-swiper was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References10
EUVD
EUVDadded 2025/11/24 11:42 p.m.5 views

EUVD-2025-199315

Malicious code in @fishingbooker/react-raty npm...

6.6AI score
Exploits0References4
OSV
OSVadded 2025/11/24 11:42 p.m.5 views

MAL-2025-191223 Malicious code in @fishingbooker/react-raty (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01a32900cd2e5c9e243d0183183c4b1e1fcb3b9e834f1bbc4ed5dd92087d73e1 The package @fishingbooker/react-raty was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References10
EUVD
EUVDadded 2025/11/24 11:42 p.m.5 views

EUVD-2025-199316

Malicious code in @fishingbooker/react-pagination npm...

6.6AI score
Exploits0References4
Rows per page
Query Builder