CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Snyk•added 4 days ago•4 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...

9.8CVSS5.6AI score

Snyk•added 2026/05/29 10:4 p.m.•7 views

Malicious Package

Overview @breezeai-frontend/tailwind-config is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and...

OSSF Malicious Packages•added 2026/05/29 10:3 p.m.•11 views

Malicious code in tailwind-effect (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a340be9809f1baa4f0e0ce64286a7d9266ccb49cd82fae68f5ac02b50e193a5f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSV•added 2026/05/29 10:3 p.m.•3 views

MAL-2026-5081 Malicious code in tailwind-effect (npm)

Snyk•added 2026/05/29 10:3 p.m.•5 views

Malicious Package

Overview tailwind-effect is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

OSSF Malicious Packages•added 2026/05/29 10:3 p.m.•10 views

Malicious code in tailwind-smooth-slider (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b613524a54cbd80614c087930d4df2de524b7a594cadc3469723bb38e5cc8516 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Snyk•added 2026/05/29 10:3 p.m.•5 views

Malicious Package

Overview tailwind-smooth-slider is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...

OSSF Malicious Packages•added 2026/05/29 10:2 p.m.•11 views

Malicious code in tailwind-clamps-line (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 091842cb2bfe94e715b2bfec88b04625ea3350097c037d2b172483905633c20e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

OSV•added 2026/05/29 10:2 p.m.•4 views

MAL-2026-5080 Malicious code in tailwind-clamps-line (npm)

Snyk•added 2026/05/29 10:2 p.m.•4 views

Malicious Package

Overview tailwind-clamps-line is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Snyk•added 2026/05/29 10:2 p.m.•6 views

Malicious Package

Overview tailwind-typography-cssstyle is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

Snyk•added 2026/05/26 9:28 a.m.•7 views

Malicious Package

Overview tailwind-style-typography is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

OSSF Malicious Packages•added 2026/05/22 6:41 p.m.•7 views

Malicious code in tailwind-style-typography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0818530f40672586168012538662486135f040526d0e4377f362b6bfe2f61bd2 The package name impersonates the official @tailwindcss/typography plugin and replicates its README and source verbatim including links to...

OSV•added 2026/05/22 6:41 p.m.•3 views

MAL-2026-4680 Malicious code in tailwind-style-typography (npm)

OSSF Malicious Packages•added 2026/05/20 7:31 p.m.•6 views

Malicious code in @tailwind-core/oxide-linux-x64-gnu (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a107a0746f2f5159d661e4d332eac53f871b9d22f80caf5863bdd713e252ae00 The package name '@tailwind-core/oxide-linux-x64-gnu' impersonates the legitimate Tailwind CSS v4 oxide engine package...

5.9AI score

OSV•added 2026/05/20 7:31 p.m.•4 views

MAL-2026-4448 Malicious code in @tailwind-core/oxide-linux-x64-gnu (npm)

5.9AI score

OSSF Malicious Packages•added 2026/05/20 3:22 a.m.•6 views

Malicious code in @tailwind-core/oxide-win32-x64-msvc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d93cb69a6f12f5739ab03d78641f2a79179750b6182f65ba5b8fb8ec4a1399bc The package name @tailwind-core/oxide-win32-x64-msvc impersonates the legitimate Tailwind CSS scope @tailwindcss published by tailwindlabs. The READM...

OSV•added 2026/05/20 3:22 a.m.•4 views

MAL-2026-4449 Malicious code in @tailwind-core/oxide-win32-x64-msvc (npm)

OSV•added 2026/05/20 1:16 a.m.•2 views

MAL-2026-4452 Malicious code in @tailwind-core/webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7955094460738dc65288f88a3bb990c7d3ff52ed3683f11265b7072bd80aa4e3 Package @tailwind-core/webpack impersonates the legitimate Tailwind v4 webpack loader @tailwindcss/webpack. The README copies Tailwind Labs branding ...

5.9AI score