CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/04/17 11:30 a.m.•1 views

MAL-2026-2845 Malicious code in node-red-contrib-yolo-object-detection (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f37c68b0e146f969ed875753302026894ce41d379d736a1856b9e12a8c1a4479 The package node-red-contrib-yolo-object-detection was found to contain malicious code. Source: ghsa-malware...

5.7AI score

OSSF Malicious Packages•added 2026/03/22 6:14 p.m.•4 views

Malicious code in @emilgroup/insurance-sdk-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ddc13f3218d4cac889a3d7c9d646430c04959f242c5c6cb593d3a31f84baa7a4 The package @emilgroup/insurance-sdk-node was found to contain malicious code. Source: ghsa-malware...

5.8AI score

Exploits0References4

OSSF Malicious Packages•added 2026/03/10 1:4 a.m.•3 views

Malicious code in iron-media-query (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 548ed1fd1be98d1ed340a991d8db46117cdd8cdd2a43f625408015ed6714d778 The package iron-media-query was found to contain malicious code. Source: ghsa-malware 159ebd19facb8454d0a41a0815dc3f3c0516dfc4f7a7ac22c5ea3f106fd008...

5.7AI score

OSSF Malicious Packages•added 2026/02/20 4:56 p.m.•3 views

Malicious code in format-defaults (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f00cab7061e49ab4c27f149d8944dbf016be470f0a6380b58d1432ce3c5dfd04 The package format-defaults was found to contain malicious code. Source: ghsa-malware 90aea488bdca1dafac7912501be1bdfb01e2304e4a110715802f98994f2c712...

5.6AI score

OSV•added 2026/02/10 4:15 p.m.•3 views

MAL-2026-833 Malicious code in express-configer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e492b9087ab21198777e586b9d21eade1fe2948bb67f1ab484c7274056861276 The package express-configer was found to contain malicious code. Source: ghsa-malware 8484436a0b43b94054c0fa7ceb955362a6557d9bef3019e2fae2e51e42ff1f...

5.8AI score

OSSF Malicious Packages•added 2026/02/02 8:29 a.m.•7 views

Malicious code in dise-pkt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b02da19d128c79fa9465ba506ff8f53abb3ef541a1da253174255be017c9fd97 The package dise-pkt was found to contain malicious code. Source: ghsa-malware 58b8c2811e173e83d76597b5cb08d80de79cbc72396b7ba7957ed6c15a6003a2 Any...

5.4AI score

OSV•added 2026/01/21 4:48 a.m.•3 views

MAL-2026-425 Malicious code in plugin-vue (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03d02d8d83b614a55ba66663cbaa93bfc062bb8de63f438fcd60bea960610a5f The package plugin-vue was found to contain malicious code. Source: ghsa-malware 5dd13d282d1e3afa8890341ff538701132443043511faaac6d79e562de074cb3 Any...

5.5AI score

Exploits0References2

OSSF Malicious Packages•added 2025/10/29 11:55 p.m.•3 views

Malicious code in quantum-packages (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 144aa1474c1b5043966e321c81c29f0fae41f764e0948ee5491baa14a08563b1 The package quantum-packages was found to contain malicious code. Source: ghsa-malware 615e247f6ecd82d6ec0aacb0855b7a222aef75c2834a024b3b99ee38c2e7fb...

OSSF Malicious Packages•added 2025/10/09 9:6 p.m.•2 views

Malicious code in redirect-u0e2q7 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b8b0dd60c89b0c84968f34108c06d0e58951c2c9a1b03a2b826c6261e7da224f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/10/02 2:28 p.m.•2 views

Malicious code in affected-tests (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d28082ed059e68e9aeb19f28b4d928db94d6f5392467f2fd362a468fd93bb6e6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSV•added 2025/09/29 5:29 a.m.•1 views

MAL-2025-47829 Malicious code in node-notifications (npm)

The package node-notifications was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f537b45789bd1ad6fcec083716172d0230b37e04510ace80351a35ef51cf0a9 Any computer that has this package installed or running should be considered fully...

OSSF Malicious Packages•added 2025/09/15 1:12 a.m.•2 views

Malicious code in mysteryxyz228 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 22682ceec435c59527a3d5aef373a154b9df5154463ebbe5620cc739d5c7e57d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/08/19 5:2 a.m.•2 views

Malicious code in grok-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 86e3c3ed43462c81e220a40fc8643c2c519f947bb781dff9a1d13de547b4d520 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/06/23 4:40 p.m.•1 views

Malicious code in react-smooth-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7510dd029031b29ab209e3114deb48a7ad72b83c7d10073376637b71e89abf7b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/05/23 1:41 a.m.•2 views

Malicious code in internalwkl-1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 929f2a7e5622ef6954156300b8095508bdebc3f69573d35fdcdb9785504809ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/02/03 9:1 a.m.•2 views

Malicious code in cache-wranglerjs-binary (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0178e5afcebf0b4e6e060f9908128a075320708d9500e7925bd8c379269a3919 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2025/01/20 7:34 a.m.•2 views

Malicious code in vue-loader-vue3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c22e5d514334329c3b75f951d755b2a3ef9e122863f7c437530413cd6c49b986 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/12/19 11:5 a.m.•1 views

Malicious code in uflexreward-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57620816e143ff2658a9323cbf5e516cacf63db55bbe14fecdabeafd68bf1d8a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSSF Malicious Packages•added 2024/09/02 1:42 a.m.•3 views

Malicious code in @diotoborg/enim-molestias (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3927b47ffd868bff4c3e44aae4326bad7c3da7fb2a11b07847bd8f8f4fa8edcf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...