Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-007314
sonatype-2025-007314
Malicious Packages - Thu Nov 27 2025 [Info Stealer]
Published Nov 27, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191482.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191487.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191558.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192402.json
CVSS Score
Medium
5.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
chain-selectors
0.0.1-security
npm
chain-selectors
2.0.0
npm
chain-selectors
2.2.2
npm
chain-selectors
3.0.0
npm
chain-selectors
4.0.0
npm
chain-selectors
9.1.0
npm
chia-gaming-lobby-connection
0.0.1-security
npm
chia-gaming-lobby-connection
1.2.2
npm
chia-gaming-lobby-connection
2.2.2
npm
chia-gaming-lobby-connection
3.2.2
npm
data-xabit
0.0.1-security
npm
data-xabit
1.2.2
npm
wartsila-application-json
0.0.1-security
npm
wartsila-application-json
1.0.0
npm
wartsila-text-csv
0.0.1-security
npm
wartsila-text-csv
1.0.0
1-16 of 16
sonatype-2025-007314 | Components Impacted | Sonatype Guide | Sonatype Guide
