CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

105924 matches found

OSV•added 2026/05/14 7:25 p.m.•1 views

MAL-2026-3749 Malicious code in @webapp-next/store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbad3803cdda40845fe2aa64e0963b9293f9ee523b3f9205a354da2ae1e317bf package.json declares "preinstall": "node index.js", which runs automatically on npm install. index.js collects os.hostname, os.platform, os.arch,...

5.8AI score

Exploits0References1

OSV•added 2026/05/14 7:25 p.m.•6 views

MAL-2026-3771 Malicious code in request-logger-canary (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf0d566d7abb400988aea74b00099a6db4c5ea928f32e7d44648193e21a36035 [email protected] ships a preinstall.js that, when npm install runs, opens a TCP socket to 52.74.242.200:8851 and pipes an interactive...

5.9AI score

Exploits0References1

OSSF Malicious Packages•added 2026/05/14 7:25 p.m.•6 views

Malicious code in prisma-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1aab2820bfb9036995418ba2b36887f8970d7deaa69d8bc4aa24e36266bf18d1 [email protected] is a name-confusion package against the genuine prisma ORM. Its package.json declares "preinstall":...

5.9AI score

Exploits0References4

OSV•added 2026/05/14 7:25 p.m.•4 views

MAL-2026-3764 Malicious code in glob-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 091b8ee02b80a8a3fda11c15a6d0b8f657b639100244a4398d046ded5854eb64 [email protected] is a malicious typosquat with no legitimate functionality. Its index.js is a stub; package.json declares scripts.postinstall: node...

5.8AI score

Exploits0References7

OSSF Malicious Packages•added 2026/05/14 7:25 p.m.•7 views

Malicious code in ethers-signing-key (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6735be7311be4f6b4f609762cfb77504fe141bc9d8d5b5c0a75d521119aa2fa The package's npm postinstall hook executes a one-liner that uses childprocess.exec to curl/wget an unpinned Python script from a personal user's...

6.6AI score

Exploits0References2

OSV•added 2026/05/14 7:25 p.m.•2 views

MAL-2026-3761 Malicious code in ethers-signing-key (npm)

6.6AI score

Exploits0References2

OSV•added 2026/05/14 7:25 p.m.•2 views

MAL-2026-3763 Malicious code in exxpress-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfa81f7c144d5feeea9c49254fbeec68f8271460d4a51efd5757a62b251c05f2 The package declares scripts.postinstall pointing at postinstall.js, which runs automatically on npm install. The script performs three...

5.8AI score

Exploits0References4

OSSF Malicious Packages•added 2026/05/14 7:25 p.m.•8 views

Malicious code in exxpress-utils (npm)

5.8AI score

Exploits0References4

OSV•added 2026/05/14 7:25 p.m.•2 views

MAL-2026-3772 Malicious code in rimraf-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a59d88d733415216903578b3c3806d76405a23a7cca56ee355eb6725e4e930d4 [email protected] impersonates the widely-installed rimraf package index.js is a dummy stub that internally identifies itself as 'lodash-js — Just a...

5.8AI score

Exploits0References3

OSSF Malicious Packages•added 2026/05/14 7:25 p.m.•8 views

Malicious code in rimraf-utils (npm)

5.8AI score

Exploits0References3

OSSF Malicious Packages•added 2026/05/14 7:24 p.m.•5 views

Malicious code in nock-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1070514eba7a5f0fedc2760db7710399d38e070d98dc99910d3b49923959820 The package declares scripts.postinstall: node postinstall.js, which runs automatically on npm install. The script is an explicit credential harveste...

5.8AI score

Exploits0References5

OSV•added 2026/05/14 7:24 p.m.•3 views

MAL-2026-3768 Malicious code in npmjs_web3-util (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 263a0126b20b1d58bc0528a4b7bea19027b94383e00b5b9f03b712d96be89ca7 The package's postinstall lifecycle hook downloads a script from a personal GitHub Gist...

5.8AI score

Exploits0References1

OSV•added 2026/05/14 7:24 p.m.•3 views

MAL-2026-3755 Malicious code in chalk-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0fe2974289b691a9f5541068f2e399aecb14a719779202ff5999652ffe351db On npm install, postinstall.js runs a credential and cryptocurrency stealer against the installer's machine. It reads /.npmrc extracting authToken an...

5.8AI score

Exploits0References3

OSSF Malicious Packages•added 2026/05/14 7:24 p.m.•6 views

Malicious code in cheerio-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2d51a2885f4eaff732d1ef7ab065b04d21c59263b1212d5b92b92c87914ef879 cheerio-tool typosquats the popular cheerio HTML parser README claims 'Cheerio Tool utility helpers', keywords are 'lodash','utilities', and index.js...

5.8AI score

Exploits0References3

OSSF Malicious Packages•added 2026/05/14 7:24 p.m.•7 views

Malicious code in chalk-pack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e6eab5e9e696250cc719b36e144f4534cac2b38a25521cda80222b6c66cd64c Package is named chalk-pack impersonating chalk with keywords and index.js impersonating lodash; index.js is a stub that self-describes as 'Just a...

5.8AI score

Exploits0References2

OSSF Malicious Packages•added 2026/05/14 7:24 p.m.•8 views

Malicious code in dotenvv-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 79fd33c6e511ab11f10b1dae91e2f083f486dd020bbf2dca5256eabc904f61b7 Package name dotenvv-tool impersonates the popular dotenv package; index.js is an admitted dummy stub "The real payload is in postinstall.js". The...

5.8AI score

Exploits0References5

OSV•added 2026/05/14 7:24 p.m.•1 views

MAL-2026-3758 Malicious code in dotenvv-tool (npm)

5.8AI score

Exploits0References5

Cvelist•added 2026/05/14 7:2 p.m.•30 views

CVE-2026-26191 Fleet vulnerable to OS command injection in software packages

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet's software installer pipeline could allow a crafted software package to execute arbitrary commands as root macOS/Linux or SYSTEM Windows on managed endpoints when an uninstall is triggered. When a...

6CVSS0.00034EPSS

Exploits0References2

CVE•added 2026/05/14 7:2 p.m.•14 views

CVE-2026-26191

Fleet prior to version 4.81.0 is affected by a vulnerability in the software installer pipeline where metadata from uploaded packages (pkg, deb, rpm, exe, msi) is used to generate uninstall scripts without proper sanitization. A crafted package could cause arbitrary commands to run with root priv...

9.8CVSS6.2AI score0.00034EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/05/14 6:46 p.m.•26 views

CVE-2026-44633 Live Helper Chat: REST API chat update accepts arbitrary chat fields across department boundaries

Live Helper Chat is an open-source application that enables live support websites. In 4.84v, the Live Helper Chat REST API chat update endpoint allows a REST user with lhchat/use to update a chat in a department they cannot read. The endpoint accepts arbitrary chat object fields, so the user can...

8.1CVSS0.00032EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by