Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-007574
sonatype-2025-007574
Malicious Packages - Mon Dec 15 2025 [Dropper]
Published Dec 16, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
CVSS Score
High
8.7
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
@etoroloro/my_node_js_module
1.0.0
npm
@etoroloro/my_node_js_module
1.0.1
npm
@etoroloro/my_node_js_module
1.0.2
npm
@etoroloro/my_node_js_module
1.0.3
npm
@peter_wilson12091/internal-json-test-parser
0.0.1-security
npm
@peter_wilson12091/internal-json-test-parser
1.0.0
npm
dise-pkt
1.0.2
npm
flip-prx
1.0.2
npm
mayhem-wma
1.0.1
npm
mcp-polymarket
0.5.2
npm
mcp-polymarket
0.5.3
npm
portal-aes
1.3.3
npm
portal-lim
1.3.4
npm
portal-lime
2.1.3
npm
portal-lise
0.0.1-security
npm
portal-lise
2.1.4
npm
tinyparrot
0.0.10
npm
tinyparrot
0.0.11
npm
tinyparrot
0.0.12
npm
tinyparrot
0.0.13
npm
tinyparrot
0.0.14
npm
tinyparrot
0.0.15
npm
tinyparrot
0.0.16
npm
tinyparrot
0.0.17
npm
tinyparrot
0.0.18
npm
tinyparrot
0.0.1
npm
tinyparrot
0.0.2
npm
tinyparrot
0.0.3
npm
tinyparrot
0.0.4
npm
tinyparrot
0.0.5
npm
tinyparrot
0.0.6
npm
tinyparrot
0.0.7
npm
tinyparrot
0.0.8
npm
tinyparrot
0.0.9
npm
tinyparrot
0.2.0
npm
tinyparrot
0.3.0
npm
tinyparrot
0.4.0
npm
xrpl-api
3.7.21
1-38 of 38
sonatype-2025-007574 | Components Impacted | Sonatype Guide | Sonatype Guide
