Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-004508
sonatype-2025-004508
Malicious Packages - Mon Nov 10 2025 [Credential Info Stealer]
Published Nov 10, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-55027.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-55028.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-55030.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-55031.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-55032.json
CVSS Score
High
7.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
megaexploitvorkemol
0.30.1
npm
megaexploitvorkemol1
0.30.1
npm
megaexploitvorkemol2
0.30.1
npm
megaexploitvorkemol3
0.30.1
npm
megaexploitvorkemol4
0.30.1
npm
megaexploitvorkemol5
0.30.1
npm
megaexploitvorkemol6
0.30.1
npm
megaexploitvorkemol7
0.30.1
1-8 of 8
sonatype-2025-004508 | Components Impacted | Sonatype Guide | Sonatype Guide
