Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-004455
sonatype-2025-004455
Malicious Packages - Thu Nov 06 2025 [Credential Info Stealer]
Published Nov 6, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192798.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49399.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49406.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49407.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49408.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49409.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49411.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49417.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49420.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49423.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49424.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49425.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49426.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49429.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49431.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49432.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49433.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49444.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49445.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49448.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49449.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49450.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49451.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-49452.json
CVSS Score
High
7.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
1libxmljs2
0.0.1-security
npm
1libxmljs2
0.30.2
npm
cachelogger
0.30.1
npm
erbankbackdoor
0.30.2
npm
fastxmlexploit
1.0.0
npm
finalmoyloyt
0.30.1
npm
finalmoyloyt2
0.30.1
npm
finalmoyloyt4
0.30.1
npm
flagstealer
0.30.2
npm
flagstealer
0.30.4
npm
fullscriptsexploit
0.30.1
npm
injectorpackage
0.30.1
npm
jenkinslogger
0.30.1
npm
libxmljs2superbank
0.30.2
npm
libxmljs2superbank
999.0.0
npm
logstealer
0.30.1
npm
megadepsexploit
0.30.1
npm
megaexploitvorkemol
0.30.1
npm
megaexploitvorkemol1
0.30.1
npm
megaexploitvorkemol2
0.30.1
npm
megaexploitvorkemol3
0.30.1
npm
megaexploitvorkemol4
0.30.1
npm
megaexploitvorkemol5
0.30.1
npm
megaexploitvorkemol6
0.30.1
npm
megaexploitvorkemol7
0.30.1
npm
notimeoutexploit
0.30.1
npm
runtime-only-exploit
0.30.1
npm
runtimemoy
0.30.1
npm
runtimemoy
0.30.2
npm
runtimemoy2
0.30.2
npm
runtimemoyv2
0.30.1
npm
runtimexploit
0.30.1
npm
scriptstealer
0.0.1-security
npm
scriptstealer
0.30.2
npm
superbankbackdoor
0.30.1
npm
superbankbackdoor
1.0.0
npm
supermoy1
0.30.1
npm
supermoy2
0.30.1
npm
supervot2
0.30.1
npm
supervot4
0.30.1
npm
supervot5
0.30.1
npm
testscriptsmoyon
0.30.1
npm
testsender
0.30.1
npm
workingstealer
0.0.1-security
npm
workingstealer
0.30.2
npm
workspacestealer
0.30.1
npm
xmljs2bank
0.30.2
npm
xmlparserattack
0.30.1
npm
xmlparserruntime
0.30.1
1-49 of 49
sonatype-2025-004455 | Components Impacted | Sonatype Guide | Sonatype Guide
