Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-006858
sonatype-2025-006858
NPM Security Holding Packages - Sat Nov 15 2025
Published Nov 15, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-138831.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-139121.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-54231.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-60124.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-60183.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-60328.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-60418.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-60843.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-61148.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-61248.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-61356.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-61373.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-61435.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-61462.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-67410.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-69784.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-90308.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-93272.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-93840.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-94122.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-94422.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-94682.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-95048.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-95138.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-95644.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-95728.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-97011.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-97098.json
CVSS Score
Critical
10.0
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
artificial_gamefowl_z3n
0.0.1-security
npm
artificial_gamefowl_z3n
1.4.1
npm
combined_warbler_z3n
0.0.1-security.0
npm
combined_warbler_z3n
0.0.1-security.1
npm
combined_warbler_z3n
0.0.1-security
npm
combined_warbler_z3n
2.4.1
npm
confidential-black-elephant
0.0.1-security.0
npm
confidential-black-elephant
0.0.1-security.1
npm
confidential-black-elephant
0.0.1-security
npm
confidential-black-elephant
0.0.1
npm
convenient_antlion_z3n
0.0.1-security.0
npm
convenient_antlion_z3n
0.0.1-security.1
npm
convenient_antlion_z3n
0.0.1-security
npm
convenient_antlion_z3n
3.2.4
npm
creative_sailfish_z3n
0.0.1-security
npm
creative_sailfish_z3n
2.1.4
npm
drunk_crocodile_z3n
0.0.1-security
npm
drunk_crocodile_z3n
1.2.3
npm
dying_macaw_z3n
0.0.1-security
npm
dying_macaw_z3n
3.4.1
npm
exciting_ptarmigan_z3n
0.0.1-security
npm
exciting_ptarmigan_z3n
3.3.1
npm
faithful_eel_z3n
0.0.1-security
npm
faithful_eel_z3n
4.2.3
npm
fitri-kolak38-ruro
0.0.1-security.0
npm
fitri-kolak38-ruro
0.0.1-security
npm
fitri-kolak38-ruro
2.1.3
npm
giant_swallow_z3n
0.0.1-security
npm
giant_swallow_z3n
2.4.1
npm
instant_silkworm_z3n
0.0.1-security
npm
instant_silkworm_z3n
4.1.2
npm
jolly-tomato-gull
0.0.1-security.0
npm
jolly-tomato-gull
0.0.1-security.1
npm
jolly-tomato-gull
0.0.1-security
npm
jolly-tomato-gull
2.3.8
npm
legitimate-sapphire-snipe
0.0.1-security.0
npm
legitimate-sapphire-snipe
0.0.1-security.1
npm
legitimate-sapphire-snipe
0.0.1-security
npm
legitimate-sapphire-snipe
9.8.7
npm
mere_cuckoo_z3n
0.0.1-security.0
npm
mere_cuckoo_z3n
0.0.1-security.1
npm
mere_cuckoo_z3n
0.0.1-security
npm
mere_cuckoo_z3n
1.2.4
npm
nice_angelfish_z3n
0.0.1-security
npm
nice_angelfish_z3n
2.1.2
npm
occupational_bass_z3n
0.0.1-security
npm
occupational_bass_z3n
4.2.3
npm
outrageous-red-swallow
0.0.1-security.0
npm
outrageous-red-swallow
0.0.1-security.1
npm
outrageous-red-swallow
0.0.1-security
1-50 of 88
sonatype-2025-006858 | Components Impacted | Sonatype Guide | Sonatype Guide
