Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

111 matches found

OSV
OSVadded 2026/05/12 4:35 a.m.0 views

MAL-2026-3579 Malicious code in @uipath/telemetry (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91d05751804316999a3882b1e43e61e9b9844220d8994bdc3d9dcfa25edd5a3b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/04 12:1 a.m.2 views

Malicious code in @bcs-bank/init (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb2a526cbf1ef79ebdf6126f699f18ffbb6f4520d46fc66f709da256b903e8e1 The package @bcs-bank/init was found to contain malicious code. Source: ghsa-malware e8831b7c4a8b59f53226813d7d4203e4b28fdc08b8df0d5c60bd1d9e78874786...

5.8AI score
Exploits0References1
Snyk
Snykadded 2026/03/05 4:49 p.m.2 views

Malicious Package

Overview @imhuman/corp-build-utils-poc is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS5.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/02/03 3:57 a.m.4 views

Malicious code in transform-react-display-name (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ad21ba0cb042f576642dd61d0639ac6da6cec5a468ff7b5cf0aab9164667bcb0 The package transform-react-display-name was found to contain malicious code. Source: ghsa-malware...

5.4AI score
Exploits0References1
OSV
OSVadded 2026/01/21 4:34 a.m.2 views

MAL-2026-416 Malicious code in hw-app-eth (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b26da97535a707e0e93acd8bc34d6e7ad13756f38c37d34b362a36d4dbdef24a The package hw-app-eth was found to contain malicious code. Source: ghsa-malware 2f92f05cefb6ff5250762470390af00c1d4ccaf51b04cf8f1c15ab1721573a3f Any...

5.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/11/24 11:40 p.m.3 views

Malicious code in test23112222-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 434e359e0d3c050231dcc136a3a0ebd345c7770e206777107547831fa91eaf2f The package test23112222-api was found to contain malicious code. Source: ghsa-malware ceb4d677cb55b255c09f0cc9a7144ce618bff7b1d6c67ecf208973e2045d63...

6.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/09/10 1:34 p.m.3 views

Malicious code in @i22/rocket (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47748ea5218b5ee35bfc50b911a7a41d04d1e19a74832b73679c1c376133dc79 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/08/22 4:56 a.m.2 views

Malicious code in @google_cloud/common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 77d1d3e3759d05fa05f2d625c645f9ccca58c49fbedc0eb52e1ae34ca2a4d0c0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/07/09 12:1 a.m.3 views

Malicious code in ai-guide (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 344da047769642e93f7d727b850c547fe9be2272daef99e44ef3f7c9b0f4bc77 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/06/20 10:50 a.m.2 views

Malicious code in prismicio-types (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0c1c6e5a3123f657ad2ed089a7eae83cd605ab7fb09da62d09d6b7a8b0cc039d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/05/04 9:45 a.m.3 views

Malicious code in crisp-import-conversations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 695e694069b00b1d669921e34a38537e57d625a52cebab80f5ae8af1221b8377 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/04/03 5:36 a.m.3 views

Malicious code in monitor-inference-results (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a81996c10459a5786a55c906eda2f407966455557441d103e3d55c4ab53e1c5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/25 7:13 a.m.2 views

Malicious code in create-sensort-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da1473448f21d07682398de668daf47a21453a0c884d94a67902afec6616de29 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/03/24 8:15 a.m.2 views

Malicious code in epic-react-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6d43c90ef27f311e9b6bb49fb715a80a16f68e0adef519b5f389a00ceeb8bbf3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/12/19 12:6 p.m.3 views

Malicious code in network-test-poc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0f3556105e3d88ae9ead88263d04cf512babaad83e9f169da9751c0b6d86e022 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/12/19 11:12 a.m.2 views

Malicious code in tournament_service (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a51c146ed2933a7f62a56c8bcf7aca713a310334900137f2667c9dbafbfb204 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/11/20 8:20 a.m.2 views

Malicious code in node-elm-stdio (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 009716aab1cfd479b733ac360984c2ede681513ace927b45f6b7f8a65c9bb92b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score
Exploits0References1
OSV
OSVadded 2024/11/12 12:40 p.m.3 views

MAL-2024-10619 Malicious code in monro (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 104d28b7b321b5dbca66770dcfcb8cdf2033bd8a4e8c83cfd2669d5e2bdb54a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSVadded 2024/11/05 2:56 p.m.3 views

MAL-2024-10401 Malicious code in puppeteerrequestinterceptor (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 69e8c643ef7ddf9688688411490355eea8c86e9aaff4cc8f55329bb05057ee36 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSVadded 2024/10/30 3:16 a.m.6 views

MAL-2024-10277 Malicious code in react-native-blue-crypto (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25cdf24ea56c6768c56579fca642bb9bf9510233ad5c87f48f9ec0cfc336c8c1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
Rows per page
Query Builder