Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2025-007629
sonatype-2025-007629
Malicious Packages - Mon Dec 22 2025 [Dropper]
Published Dec 22, 2025
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/PyPI/MAL-2025-192684.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-144.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-148.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-77.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-80.json
CVSS Score
High
8.7
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
pypi
colorfulpacket
0.0.1
npm
express-js-web
0.0.1-security
npm
express-js-web
5.2.1
npm
express-js-web
5.2.2
npm
express-js-web
5.2.4
npm
express-js-web
5.2.5
npm
express-js-web
5.2.6
pypi
hooktest-fin
0.1.1
npm
magnified-security-connector
2.3.1
npm
magnified-security-connector
3.1.3
npm
polygon-src
1.3.4
npm
polymarket-clob
0.0.1-security
npm
polymarket-clob
1.3.1
npm
scrollbar-stylecss
0.0.1-security
npm
scrollbar-stylecss
1.0.1
npm
smartspacestoreapp
0.0.1-security
npm
smartspacestoreapp
8.0.0
npm
smartspacestoreapp
8.0.1
npm
tailwind-animationbased
2.3.6
npm
tailwind-animationbasis
2.3.3
npm
tailwind-autoanimation
0.0.1-security
npm
tailwind-autoanimation
2.3.6
npm
tailwind-mainanimation
2.3.3
npm
tailwind-scrollbar-plugin
2.4.1
npm
tailwind-scrollbar-plugin
2.5.1
npm
tailwind-stylecss
1.3.1
1-26 of 26
sonatype-2025-007629 | Components Impacted | Sonatype Guide | Sonatype Guide
