CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

OSSF Malicious Packages•added 2026/06/02 1:36 p.m.•10 views

Malicious code in jules-test-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 30c3ca1fa1b7237661d28aada477f7316b7e696a55e2c92c4dee200f291140f4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.9AI score

Exploits0References1

Snyk•added 2026/05/18 9:0 p.m.•8 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...

9.8CVSS5.9AI score

Exploits0References2

vulnersOsv•added 2026/05/15 6:30 p.m.•5 views

org.apache.doris:flink-doris-connector-2.0 (>=26.0.0 <=26.1.1), org.apache.flink:flink-examples-table_2.12 (>=2.0.0 <=2.0.1) +6 more potentially affected by CVE-2026-35194 via org.apache.flink:flink-table-runtime (>=2.0.0 <=2.0.1)

org.apache.flink:flink-table-runtime MAVEN version =2.0.0, =26.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.1 Source cves: CVE-2026-35194 Source advisory: OSV:GHSA-2F54-V4HM-FX73...

8.1CVSS5.4AI score0.00381EPSS

Exploits0

vulnersOsv•added 2026/03/20 8:50 p.m.•11 views

@abysslabs/cli (=0.0.2), @analogjs/vite-plugin-nitro (>=2.4.0-alpha.2 <=3.0.0-alpha.1) +27 more potentially affected by CVE-2026-33490 via h3 (>=2.0.1-rc.11 <=2.0.1-rc.16)

h3 NPM version =2.0.1-rc.11, =2.4.0-alpha.2, =3.23.1-20260131-121433-34f631e, =0.15.0, =1.154.7, =0.0.1, =1.154.7, =1.154.7, =1.154.7, =2.0.0-beta.19 and more Source cves: CVE-2026-33490 Source advisory: SNYK:JS-H3-15745916...

5.3CVSS5.4AI score0.00239EPSS

Exploits1

vulnersOsv•added 2026/03/18 4:18 p.m.•8 views

@abysslabs/cli (=0.0.2), @eventodaigreja/ei-components (>=0.1.25 <=0.1.38) +21 more potentially affected by unknown CVE via h3 (>=2.0.0 <=2.0.1-rc.14)

h3 NPM version =2.0.0, =0.1.25, =3.23.1-20260131-121433-34f631e, =1.154.7, =1.154.7, =1.154.7, =1.154.7, =1.154.7, =1.154.7, =1.154.7, =1.154.7, =0.1.7, =0.3.1-beta.5, =0.0.1-beta.1, =0.0.1-beta.7 and more Source cves: unknown CVE Source advisory: OSV:GHSA-WR4H-V87W-P3R7...

5.8AI score

Exploits0

vulnersOsv•added 2026/02/04 6:15 p.m.•6 views

@n8n/backend-test-utils (=0.26.0), @n8n/db (=0.34.0) +2 more potentially affected by CVE-2026-25051 via n8n-core (=1.122.0)

n8n-core NPM version =1.122.0 is affected by a known vulnerability. The following packages have a transitive dependency on n8n-core and may be impacted: - @n8n/backend-test-utils =0.26.0 - @n8n/db =0.34.0 - @n8n/task-runner =1.59.0 - n8n-node-dev =1.121.0 Source cves: CVE-2026-25051 Source...

8.5CVSS6AI score0.00224EPSS

Exploits0

OSSF Malicious Packages•added 2025/11/24 2:10 p.m.•5 views

Malicious code in @ensdomains/test-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 481ab00e5cd5767ce6cb39bcab250f36dca030dce7d89f8f41b0a2086e1ebdbb The package @ensdomains/test-utils was found to contain malicious code. Source: ghsa-malware...

6.9AI score

Exploits0References4

OSV•added 2025/10/30 5:38 p.m.•3 views

MAL-2025-49186 Malicious code in epic-react-test-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b754cb5a234d92fe76a481880c57c66b79992d80ef094a44a8e53c2b6f143edf The package epic-react-test-utils was found to contain malicious code...

7AI score

Exploits0

OSV•added 2025/10/23 7:48 p.m.•1 views

MAL-2025-48878 Malicious code in test-utils-vue3 (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score

Exploits0

OSSF Malicious Packages•added 2025/10/23 7:35 p.m.•3 views

Malicious code in internal-test-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b14723fa9c85ed09e8669f1e402756b97ce2654f9e2b222a57ca6d539d73afc7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

vulnersOsv•added 2025/10/15 9:30 a.m.•9 views

ai.catboost:catboost-spark_3.5_2.12 (>=1.2.3 <=1.2.10), ai.djl.spark:spark_2.12 (=0.29.0) +265 more potentially affected by CVE-2025-55039 via org.apache.spark:spark-network-common_2.12 (>=3.5.0 <=3.5.1)

org.apache.spark:spark-network-common2.12 MAVEN version =3.5.0, =1.2.3, =3.44.0.1-1-3.5, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =7.0.0, =0.6.17, =0.0.3, =14.0.0, =14.0.0, =14.0.0, =14.17.2 - bio.ferlab:obo-parser2.12 =1.3.1 and more Source cves: CVE-2025-55039 Source advisory:...

6.5CVSS7.2AI score0.00225EPSS

Exploits0

OSSF Malicious Packages•added 2025/10/06 9:23 p.m.•2 views

Malicious code in e2e-test-utils-w (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...

6.9AI score

Exploits0

OSSF Malicious Packages•added 2025/08/29 6:55 p.m.•2 views

Malicious code in d360-test-utils (npm)

The package d360-test-utils was found to contain malicious code...

7AI score

Exploits0

OSV•added 2025/08/29 6:55 p.m.•1 views

MAL-2025-41965 Malicious code in d360-test-utils (npm)

The package d360-test-utils was found to contain malicious code...

7AI score

Exploits0

OSSF Malicious Packages•added 2025/07/25 7:20 a.m.•3 views

Malicious code in gafana-test-utils (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a4e648e988f33de6b085bf631d45494adb7b9be241071b454c40705384ad7e6e The OpenSSF Package Analysis project identified 'gafana-test-utils' @...

7.1AI score

Exploits0

OSV•added 2025/07/25 7:20 a.m.•3 views

MAL-2025-6237 Malicious code in gafana-test-utils (npm)

7.3AI score

Exploits0

OSSF Malicious Packages•added 2025/01/30 4:55 p.m.•2 views

Malicious code in common-test-utils (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 461213ab0829aa9518db4d8793b4a1fdfd4b3bd6971f9bbd126d558e4f96b953 Any computer that has this package installed or running should be considered...

6.8AI score

Exploits0References3

OSV•added 2025/01/30 4:55 p.m.•3 views

MAL-2025-646 Malicious code in common-test-utils (npm)

7AI score

Exploits0References3

OSV•added 2024/09/19 1:42 a.m.•7 views

MAL-2024-8921 Malicious code in shopify-app-session-storage-test-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1cf57abdb74d18055d8c4a31ab0fe3fb4fe3553670523254373ae3cd9a03d53d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References3

OSV•added 2024/09/17 11:46 a.m.•7 views

MAL-2024-8887 Malicious code in ui-extensions-test-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 612535ed853f3bcea44a30e8568888db73a09aa577ffd88994bf21ea077c985a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by