Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-007331
sonatype-2025-007331
Malicious Packages - Fri Nov 28 2025 [Info Stealer]
Published Nov 28, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191480.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191485.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191488.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191489.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191490.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191499.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191556.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191557.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192403.json
CVSS Score
Medium
5.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
accounts-base
0.0.1-security
npm
accounts-base
1.0.0
npm
accounts-base
23.2.2
npm
accounts-base
23.5.2
npm
accounts-base
23.5.6
npm
allow-deny
0.0.1-security
npm
allow-deny
1.0.0
npm
allow-deny
13.4.6
npm
btc-transaction-helper
0.0.1-security
npm
btc-transaction-helper
1.0.0
npm
codemirror-5
0.0.1-security
npm
codemirror-5
2.0.0
npm
com.unity.sharp-zip-lib
0.0.1-security
npm
com.unity.sharp-zip-lib
2.0.0
npm
com.unity.sharp-zip-lib
9.1.0
npm
eslint-plugin-react-hooks-published
0.0.1-security
npm
eslint-plugin-react-hooks-published
1.0.0
npm
eslint-plugin-react-hooks-published
3.0.0
npm
eslint-plugin-react-hooks-published
5.0.0
npm
eslint-plugin-react-hooks-published
9.1.0
npm
libdebugrouter.so
0.0.1-security
npm
libdebugrouter.so
2.0.0
npm
libdebugrouter.so
2.1.0
npm
libdebugrouter.so
3.1.0
npm
libdebugrouter.so
3.1.2
npm
liblynxtextra.so
0.0.1-security
npm
liblynxtextra.so
2.0.0
npm
liblynxtextra.so
3.0.0
npm
liblynxtextra.so
5.0.0
npm
liblynxtextra.so
6.0.0
npm
liblynxtextra.so
7.0.0
npm
liblynxtextra.so
8.0.0
npm
liblynxtextra.so
9.0.0
npm
liblynxtextra.so
9.1.0
npm
x402-legacy
0.0.1-security
npm
x402-legacy
2.0.0
npm
x402-legacy
3.0.0
npm
x402-legacy
4.0.0
npm
x402-legacy
5.0.0
npm
x402-legacy
5.0.9
npm
x402-legacy
9.2.0
1-41 of 41
sonatype-2025-007331 | Components Impacted | Sonatype Guide | Sonatype Guide
