Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-007231
sonatype-2025-007231
NPM Security Holding Packages - Mon Nov 24 2025
Published Nov 24, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-100267.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-100316.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-100707.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-101394.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-101574.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-101620.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-101650.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-102048.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-102157.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-103636.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-103824.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-103925.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-104167.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-104184.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-104748.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-105347.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-105444.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-105976.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-106917.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-107071.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-107402.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-107644.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-107697.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-108948.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-109151.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-109945.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-110344.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-110450.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-111572.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-99340.json
CVSS Score
Critical
10.0
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
alaran-notthedevs
0.0.1-security.0
npm
alaran-notthedevs
0.0.1-security.1
npm
alaran-notthedevs
0.0.1-security
npm
alaran-notthedevs
2.2.2
npm
alaran-notthedevs
4.4.4
npm
careful_donkey_replicate_automation
0.0.1-security.0
npm
careful_donkey_replicate_automation
0.0.1-security.1
npm
careful_donkey_replicate_automation
0.0.1-security
npm
careful_donkey_replicate_automation
1.1.1
npm
cfhdod-notthedevs
0.0.1-security.0
npm
cfhdod-notthedevs
0.0.1-security.1
npm
cfhdod-notthedevs
0.0.1-security
npm
cfhdod-notthedevs
3.2.1
npm
cfhdod-notthedevs
4.3.3
npm
comfortable_flea_replicate_automation
0.0.1-security.0
npm
comfortable_flea_replicate_automation
0.0.1-security.1
npm
comfortable_flea_replicate_automation
0.0.1-security
npm
comfortable_flea_replicate_automation
4.4.2
npm
developing_caribou-appteadev
0.0.1-security.0
npm
developing_caribou-appteadev
0.0.1-security.1
npm
developing_caribou-appteadev
0.0.1-security
npm
developing_caribou-appteadev
3.1.1
npm
dildarae-notthedevs
0.0.1-security.0
npm
dildarae-notthedevs
0.0.1-security.1
npm
dildarae-notthedevs
0.0.1-security
npm
dildarae-notthedevs
3.3.1
npm
disastrous_opossum-notthedevs
0.0.1-security.0
npm
disastrous_opossum-notthedevs
0.0.1-security.1
npm
disastrous_opossum-notthedevs
0.0.1-security
npm
disastrous_opossum-notthedevs
2.4.4
npm
distinctive_chicken-appteadev
0.0.1-security.0
npm
distinctive_chicken-appteadev
0.0.1-security.1
npm
distinctive_chicken-appteadev
0.0.1-security
npm
distinctive_chicken-appteadev
4.1.3
npm
eligible_stingray-appteadev
0.0.1-security.0
npm
eligible_stingray-appteadev
0.0.1-security.1
npm
eligible_stingray-appteadev
0.0.1-security
npm
eligible_stingray-appteadev
3.2.2
npm
equal_rooster_replicate_automation
0.0.1-security.0
npm
equal_rooster_replicate_automation
0.0.1-security.1
npm
equal_rooster_replicate_automation
0.0.1-security
npm
equal_rooster_replicate_automation
4.4.3
npm
heiyarus-notthedevs
0.0.1-security.0
npm
heiyarus-notthedevs
0.0.1-security.1
npm
heiyarus-notthedevs
0.0.1-security
npm
heiyarus-notthedevs
3.1.3
npm
heiyarus-notthedevs
4.1.3
npm
huethea-notthedevs
0.0.1-security.0
npm
huethea-notthedevs
0.0.1-security.1
npm
huethea-notthedevs
0.0.1-security
1-50 of 122
sonatype-2025-007231 | Components Impacted | Sonatype Guide | Sonatype Guide
