Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

Snyk
Snykadded 2026/06/02 9:0 p.m.11 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...

9.8CVSS5.6AI score
Exploits0References2
EUVD
EUVDadded 2026/01/19 12:43 a.m.3 views

EUVD-2026-3275

Malicious code in tailwin npm...

5.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/12/05 2:42 a.m.4 views

Malicious code in node-tailwind (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e33ff6b33caa8bdc3ee6c472bd1b239208b9fe59a85eecb30c997603310a8839 The package node-tailwind was found to contain malicious code. Source: ghsa-malware 81db0310d2ba64ce743a9bcf517fc3564612f97078d7b41ada94923aea6f8e4a...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/10/30 3:40 p.m.3 views

Malicious code in @cb-global-design-system-tokens/tailwind (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 8f263b2c460c81b4e6f61cc1ce72351cf2f0b2d9ff3b745181715ca4296e22e2 The OpenSSF Package Analysis project identified '@cb-global-design-system-tokens/tailwind' @ 1.0.21 npm as malicious. It is considered malicious...

7.1AI score
Exploits0
Rows per page
Query Builder