Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-007459
sonatype-2025-007459
Malicious Packages - Sat Dec 06 2025 [Info Stealer]
Published Dec 8, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191977.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191980.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-191995.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192083.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192124.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192171.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192222.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192241.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192248.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192251.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192262.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192263.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192265.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192267.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192272.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192274.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192283.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192294.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192325.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192327.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192328.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192337.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192343.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192469.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192474.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192475.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192483.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192484.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192491.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192498.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192506.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192508.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192525.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192528.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2025-192531.json
CVSS Score
Medium
5.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
elf-stats
0.0.1-security
npm
elf-stats
99.9.9
npm
elf-stats-aurora-mailbag-938
1.0.1
npm
elf-stats-candlelit-reindeer-881
0.0.1-security
npm
elf-stats-candlelit-reindeer-881
1.0.1
npm
elf-stats-candlelit-reindeer-881
1.0.2
npm
elf-stats-candlelit-reindeer-881
1.0.3
npm
elf-stats-candlelit-reindeer-881
1.0.4
npm
elf-stats-candlelit-reindeer-881
1.0.5
npm
elf-stats-candlelit-reindeer-881
1.2.0
npm
elf-stats-candlelit-reindeer-881
10.0.0
npm
elf-stats-candlelit-reindeer-881
2.0.0
npm
elf-stats-candlelit-reindeer-881
3.0.0
npm
elf-stats-candlelit-reindeer-881
3.0.1
npm
elf-stats-candlelit-reindeer-881
3.0.2
npm
elf-stats-candlelit-reindeer-881
50.0.0
npm
elf-stats-candlelit-reindeer-881
99.99.99
npm
elf-stats-candystriped-bauble-740
1.0.0
npm
elf-stats-candystriped-bauble-740
1.0.1
npm
elf-stats-candystriped-bauble-740
1.0.2
npm
elf-stats-candystriped-bauble-740
1.0.3
npm
elf-stats-candystriped-cookiejar-799
1.9.9
npm
elf-stats-candystriped-cookiejar-799
2.0.3
npm
elf-stats-candystriped-cookiejar-799
2.2.3
npm
elf-stats-candystriped-cookiejar-799
2.4.3
npm
elf-stats-candystriped-cookiejar-799
2.9.9
npm
elf-stats-candystriped-cookiejar-799
3.4.3
npm
elf-stats-candystriped-cookiejar-799
4.4.3
npm
elf-stats-candystriped-cookiejar-799
5.4.3
npm
elf-stats-candystriped-garland-735
1.0.0
npm
elf-stats-candystriped-garland-735
1.0.1
npm
elf-stats-candystriped-garland-735
1.0.2
npm
elf-stats-candystriped-ornament-933
1.0.1
npm
elf-stats-caroling-workshop-885
5.4.3
npm
elf-stats-caroling-workshop-885
5.5.3
npm
elf-stats-caroling-workshop-885
5.6.3
npm
elf-stats-caroling-workshop-885
5.7.3
npm
elf-stats-caroling-workshop-885
5.8.3
npm
elf-stats-caroling-workshop-885
5.9.3
npm
elf-stats-caroling-workshop-885
5.9.4
npm
elf-stats-caroling-wreath-635
1.0.0
npm
elf-stats-cheery-muffin-949
99.99.99
npm
elf-stats-cheery-muffin-949
999.99.99
npm
elf-stats-cosy-sled-550
1.0.0
npm
elf-stats-cosy-sleigh-356
0.0.1-security
npm
elf-stats-cosy-sleigh-356
99.0.0
npm
elf-stats-cosy-sleigh-356
99.0.1
npm
elf-stats-cosy-sparkler-518
1.0.0
npm
elf-stats-festive-hollyberry-475
1.0.0
npm
elf-stats-festive-hollyberry-475
1.0.1
1-50 of 134
sonatype-2025-007459 | Components Impacted | Sonatype Guide | Sonatype Guide
