CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

20 matches found

OSSF Malicious Packages•added 2 days ago•4 views

Malicious code in page-info-service (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d4a2106922e9e3851658667cacaa2c2818cdb56cd0c4df6778c0cb7fbed2338e The OpenSSF Package Analysis project identified 'page-info-service' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

OSV•added 2 days ago•3 views

MAL-2026-5153 Malicious code in @att-ebiz/abs-components-bc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d9d4d8606057fc579fbbc6ede648c88bb580827838850f589e8887c1dd374a39 The OpenSSF Package Analysis project identified '@att-ebiz/abs-components-bc' @ 99.9.1 npm as malicious. It is considered malicious because: - T...

OSSF Malicious Packages•added 6 days ago•8 views

Malicious code in sorenson-webfonts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ebdc541a49aeb340c75d6a96abee6465496dc22a04e82be2f03b85b2be1c3881 The OpenSSF Package Analysis project identified 'sorenson-webfonts' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

OSV•added 2026/05/26 6:11 p.m.•6 views

MAL-2026-4827 Malicious code in unleash-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d00549f2feef5f3af06b3625effca261dd2be514ae05dc1b21c60e3cb9d1b23b The OpenSSF Package Analysis project identified 'unleash-js' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2026/05/26 6:11 p.m.•7 views

Malicious code in unleash-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d00549f2feef5f3af06b3625effca261dd2be514ae05dc1b21c60e3cb9d1b23b The OpenSSF Package Analysis project identified 'unleash-js' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2026/05/26 5:40 p.m.•9 views

Malicious code in wm-mapper (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d3ca8c31fe1e2448adc737f90ef9278202575bc77d3a4a5206e62920219e54a0 The OpenSSF Package Analysis project identified 'wm-mapper' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2026/05/22 1:39 p.m.•2 views

Malicious code in @citi-icg-171632/citicms-repo-component (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 88e5400167d9962139f78098013ac4e5eadeeaa76b8916ba246c5f6b2093f508 The OpenSSF Package Analysis project identified '@citi-icg-171632/citicms-repo-component' @ 99.9.1 npm as malicious. It is considered malicious...

OSV•added 2026/05/20 2:21 a.m.•3 views

MAL-2026-4464 Malicious code in @vtmn-play/react (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e407217116bd1ae3eb89ce8631eae8299f5acd924409d33f141ebddc4489145 Package name @vtmn-play/react mimics Decathlon's Vitamin design system @vtmn/react and is published at version 99.9.1, the canonical...

Exploits0References1

OSSF Malicious Packages•added 2026/05/19 3:44 p.m.•5 views

Malicious code in @piewasm/pie-web-npm-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c0784e4ad568cf85bee3ae36dde67ba090887b3f18f501a518cb24911fb7be29 The OpenSSF Package Analysis project identified '@piewasm/pie-web-npm-package' @ 99.9.1 npm as malicious. It is considered malicious because: -...

OSV•added 2026/05/04 7:42 p.m.•1 views

MAL-2026-3331 Malicious code in lazyhtml-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45abfd9582509b7e6ded4a7ce678a25aef82365186bba18330d6f76f1cf3c5ea The package lazyhtml-scripts was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/05/01 3:2 p.m.•1 views

MAL-2026-3215 Malicious code in archetype-style (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a6fb5b405c9035099932e46f80bb6fe9740d3f727020700cc1e6ad36db2caf8 The package archetype-style was found to contain malicious code. Source: ossf-package-analysis...

OSSF Malicious Packages•added 2026/05/01 3:2 p.m.•3 views

Malicious code in archetype-style (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a6fb5b405c9035099932e46f80bb6fe9740d3f727020700cc1e6ad36db2caf8 The package archetype-style was found to contain malicious code. Source: ossf-package-analysis...

OSSF Malicious Packages•added 2026/04/22 3:10 a.m.•2 views

Malicious code in @oec-settlement/react-router (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4beeacddc1773c8aefad734c472151284b868e3a06f4be8886763a0caebb121a The package @oec-settlement/react-router was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/04/22 3:10 a.m.•1 views

MAL-2026-2978 Malicious code in @oec-settlement/react-router (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4beeacddc1773c8aefad734c472151284b868e3a06f4be8886763a0caebb121a The package @oec-settlement/react-router was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/04/20 4:51 p.m.•0 views

MAL-2026-2956 Malicious code in @serasa/core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a5d7dc70207045632b443597fdca880203a20b38f5999520fe5c437ca65a496 The package @serasa/core was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/04/18 11:55 a.m.•1 views

MAL-2026-2856 Malicious code in @ataslkit/profilecard (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8efe1bf5f3d6ed3259b1ef3d48d73c3fd6368a50097725968869b551e73f828a The package @ataslkit/profilecard was found to contain malicious code. Source: ossf-package-analysis...

OSV•added 2026/04/12 6:9 a.m.•2 views

MAL-2026-2566 Malicious code in wm-plugin-visions-recorder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9fc7d1b94e873a6acaa539c03b3deb578141de07e79343acb659b17d4815077 The package wm-plugin-visions-recorder was found to contain malicious code. Source: ghsa-malware...

Exploits0References1

OSV•added 2026/02/23 8:50 p.m.•2 views

MAL-2026-1002 Malicious code in newrubylogger (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis d10fd2e8adb621ac6bb3b4cd31357213d90dd17f27cd1f01d5e8e7138686d7c2 The OpenSSF Package Analysis project identified 'newrubylogger' @ 99.9.1 rubygems as malicious. It is considered malicious because: - The packag...

OSSF Malicious Packages•added 2025/08/30 8:32 a.m.•3 views

Malicious code in test343tttt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 14a83c7be6d241a79ccd6f23880afa83b749ac59232786eaab03a62b2512c9b7 The OpenSSF Package Analysis project identified 'test343tttt' @ 99.9.1 npm as malicious. It is considered malicious because: - The package...

OSSF Malicious Packages•added 2025/05/08 5:3 p.m.•3 views

Malicious code in @cewe-phoenix-themes/default-theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b8fefa5fe5221477fe4ca130e84721255986e7b048f3e5922c99cac89d94df83 The OpenSSF Package Analysis project identified '@cewe-phoenix-themes/default-theme' @ 99.9.1 npm as malicious. It is considered malicious...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by