Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Malicious code in guardrails-ai 0.10.1 (supply chain compromise)
Compromised Nx Console version 18.95.0
A supply chain attack compromised the official installation packages of DAEMON Tools Lite (Windows versions 12
Compromise of PyTorch Lightning PyPi Package Versions
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
Essentialplugin Plugins (Various Versions) - Injected Backdoor
Smart Slider 3 Pro 3.5.1.35 Supply Chain Attack Remote Access Toolkit
Axios npm Supply Chain Incident Impacting @usebruno/cli
Trivy ecosystem supply chain briefly compromised
xygeni-action v5 tag poisoned with C2 backdoor
Trivy Vulnerability Scanner: Unauthorized AI Agent Execution Code Included in OpenVSX Extension Release
OVRI Payment 1.7.0 - Malicious .htaccess directive
"UNSUPPORTED WHEN ASSIGNED" Certain versions of the ASUS Live Update client were distributed with unauthorized modifications introduced through a s...
VestaCP Debian Installer Malicious Backdoor Supply Chain Compromise
NetSarang v5.0 Malicious Backdoor Supply Chain Compromise
Web Developer for Chrome v0.4.9 Malicious Backdoor Supply Chain Compromise
CCleaner v5.33.6162 & CCleaner Cloud v1.07.3191 Malicious Backdoor Supply Chain Compromise
NetSarang v5.0 Malicious Backdoor Supply Chain Compromise
Nx: nx/devkit: malicious versions of nx and plugins published to npm
color-name@2.0.1 contains malware after npm account takeover
Showing 1 - 20 of 1,000+ results