Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2026/05/18 9:0 p.m.8 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...

9.8CVSS5.9AI score
Exploits0References2
vulnersOsv
vulnersOsvadded 2025/10/06 3:45 p.m.16 views

3lc (>=2.19.0 <=2.21.3), litestar-htmx (>=0.1.0 <=0.3.0) +2 more potentially affected by CVE-2025-59152 via litestar (>=2.0.0b2 <=2.15.2)

litestar PYPI version =2.0.0b2, =2.19.0, =0.1.0, =0.2.0, =0.3.14, =0.3.35 Source cves: CVE-2025-59152 Source advisory: SNYK:PYTHON-LITESTAR-13433195...

7.5CVSS5.8AI score0.0006EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/02/22 3:35 a.m.3 views

Malicious code in metamask-sdk-create-react-app (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed98a81fafea025740493667412dfaf8dd28cd12988fabdf1118a1765a12733d Any computer that has this package install...

7AI score
Exploits0References1
OSV
OSVadded 2025/01/24 5:5 a.m.3 views

MAL-2025-493 Malicious code in iberia-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9114efb6f53e10904e0d6476483d50e50570a62201743b0c30f45de8156a7489 The OpenSSF Package Analysis project identified 'iberia-sdk' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...

7.1AI score
Exploits0
OSV
OSVadded 2025/01/20 7:34 a.m.1 views

MAL-2025-247 Malicious code in ssv-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4d441396521f48556524fd4855d512807ec7548fc10a968ecc786535ee98dac6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
NVD
NVDadded 2022/12/12 1:15 p.m.23 views

CVE-2021-3437

Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service. HP is releasing software updates to mitigate the potential vulnerabilities...

9.8CVSS0.00526EPSS
Exploits0References1
Prion
Prionadded 2022/12/12 1:15 p.m.21 views

Design/Logic Flaw

Potential security vulnerabilities have been identified in an OMEN Gaming Hub SDK package which may allow escalation of privilege and/or denial of service. HP is releasing software updates to mitigate the potential vulnerabilities...

7.5CVSS9.7AI score0.00526EPSS
Exploits0References1Affected Software2
OSV
OSVadded 2019/02/18 11:33 p.m.2 views

GHSA-6JX3-RQCX-G3WW Downloads Resources over HTTP in air-sdk

Affected versions of air-sdk insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS7.5AI score0.00735EPSS
Exploits0References3
Rows per page
Query Builder