Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-004338
sonatype-2025-004338
Malicious Packages - Wed Oct 29 2025 [Credential Info Stealer]
Published Oct 29, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
CVSS Score
High
7.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
@asarioglo/npm-ghost-htb
1.23.469
npm
@asarioglo/npm-ghost-htb
1.23.470
npm
@asarioglo/npm-ghost-htb
1.23.471
npm
@asarioglo/npm-ghost-htb
1.23.472
npm
@asarioglo/npm-ghost-htb
1.23.473
npm
@asarioglo/npm-ghost-htb
1.23.474
npm
@asarioglo/npm-ghost-htb
1.23.475
npm
@asarioglo/npm-ghost-htb
1.23.476
npm
@asarioglo/npm-ghost-htb
1.23.477
1-9 of 9
sonatype-2025-004338 | Components Impacted | Sonatype Guide | Sonatype Guide
