Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (7334 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2017-16203 1 Coffescript Project 1 Coffescript 2024-11-21 N/A
The coffe-script module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
CVE-2017-16202 1 Cofeescript Project 1 Cofeescript 2024-11-21 N/A
The cofeescript module exfiltrates sensitive data such as a user's private SSH key and bash history to a third party server during installation.
CVE-2017-16128 1 Npm-script-demo Project 1 Npm-script-demo 2024-11-21 N/A
The module npm-script-demo opened a connection to a command and control server. It has been removed from the npm registry.
CVE-2017-16127 1 Pandora-doomsday Project 1 Pandora-doomsday 2024-11-21 N/A
The module pandora-doomsday infects other modules. It's since been unpublished from the registry.
CVE-2017-16081 1 Cross-env.js Project 1 Cross-env.js 2024-11-21 N/A
cross-env.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16080 1 Nodesass Project 1 Nodesass 2024-11-21 N/A
nodesass was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16079 1 Smb Project 1 Smb 2024-11-21 N/A
smb was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16078 1 Shadowsock Project 1 Shadowsock 2024-11-21 N/A
shadowsock was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16077 1 Mongose Project 1 Mongose 2024-11-21 N/A
mongose was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16076 1 Proxy.js Project 1 Proxy.js 2024-11-21 N/A
proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16075 1 Http-proxy.js Project 1 Http-proxy.js 2024-11-21 N/A
http-proxy.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16074 1 Crossenv Project 1 Crossenv 2024-11-21 N/A
crossenv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16073 1 Noderequest Project 1 Noderequest 2024-11-21 N/A
noderequest was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16072 1 Nodemailer.js Project 1 Nodemailer.js 2024-11-21 N/A
nodemailer.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16071 1 Nodemailer-js Project 1 Nodemailer-js 2024-11-21 N/A
nodemailer-js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16070 1 Nodecaffe Project 1 Nodecaffe 2024-11-21 N/A
nodecaffe was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16069 1 Nodeffmpeg Project 1 Nodeffmpeg 2024-11-21 N/A
nodeffmpeg was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16068 1 Ffmepg Project 1 Ffmepg 2024-11-21 N/A
ffmepg was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16067 1 Node-opencv Project 1 Node-opencv 2024-11-21 N/A
node-opencv was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
CVE-2017-16066 1 Opencv.js Project 1 Opencv.js 2024-11-21 N/A
opencv.js was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.