CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

665 matches found

Positive Technologies•added 2026/01/08 12:0 a.m.•1 views

PT-2026-3410

Summary Since 2017, the default webpack plugins have passed the entire process.env to EnvironmentPlugin. This pattern exposed ALL build environment variables to client-side JavaScript bundles whenever application code or any dependency referenced process.env.VARIABLE NAME. This is not a regressio...

7.5CVSS7.1AI score

Exploits0References5

OSV•added 2025/11/24 4:19 p.m.•2 views

MAL-2025-190916 Malicious code in @tezign/html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 437929a07e5bc4e0e6dfe545fa858db027aa2ba4e6fa87701a09d5b07277b543 The package @tezign/html-webpack-plugin was found to contain malicious code...

EUVD•added 2025/11/24 4:19 p.m.•0 views

EUVD-2025-198960

Malicious code in @tezign/html-webpack-plugin npm...

OSSF Malicious Packages•added 2025/11/24 4:19 p.m.•4 views

Malicious code in @tezign/html-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 437929a07e5bc4e0e6dfe545fa858db027aa2ba4e6fa87701a09d5b07277b543 The package @tezign/html-webpack-plugin was found to contain malicious code...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175544

Malicious code in winston-html-webpack-plugin-hologram-meteor npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-177563

Malicious code in node-sass-luna-ora-terser-webpack-plugin npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-175972

Malicious code in tethys-acamar-protractor-html-webpack-plugin npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-177573

Malicious code in node-config-phoenix-regulus-html-webpack-plugin npm...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-176889

Malicious code in pyxis-alphard-event-html-webpack-plugin npm...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-177313

Malicious code in parsec-kaus-optimize-css-assets-webpack-plugin-triton npm...

OSSF Malicious Packages•added 2025/11/13 3:23 a.m.•2 views

Malicious code in html-webpack-plugin-vega-atlas-fetch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 72fd14fbfa7df3518df196ac7331d4c07644a19e457f73f31be91ee9ab01ce42 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•2 views

EUVD-2025-179933

Malicious code in bunyan-redis-capella-html-webpack-plugin npm...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-189872 Malicious code in terser-webpack-plugin-centaurus-version-duplex (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c3c5c34ad44ac941803db664d6a785fac2fd342500558c1c26e98ba07c786178 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-188264 Malicious code in nextjs-html-webpack-plugin-express-gemini (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b3221eb423eac0b572d326e1984f49231a18c9d5791b59c0f4a62fa33add06e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-186406 Malicious code in csrf-bootes-html-webpack-plugin-ichnology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42e683c14d1e59c58cadcd514400f46ff49670101cb068cc2ecf1d95b413dcf9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-186753 Malicious code in enif-terser-webpack-plugin-sass-loader-spectron-webdriver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a30834a5fbe857adb14874de5f845460556c9a36ba75d7c2eee5f917aa980bd1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•2 views

MAL-2025-189269 Malicious code in rollup-plugin-chai-soap-terser-webpack-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 961e8a7cfffd287292e217d76e3379b062907280f409cf0ea9836155a60343e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/13 3:23 a.m.•1 views

MAL-2025-187379 Malicious code in html-webpack-plugin-version-vulcan-rollup (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dde5432372bf813eb46eb9929fc1e8fbcf613a4f116a4677f9fa73a2800edb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/13 3:23 a.m.•0 views

EUVD-2025-175871

Malicious code in troposphere-comet-changelog-html-webpack-plugin npm...

EUVD•added 2025/11/13 3:23 a.m.•1 views

EUVD-2025-179456

Malicious code in css-minimizer-webpack-plugin-vuetify-ichnology-redshift npm...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by