Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2026-000208
sonatype-2026-000208
Malicious Packages - Thu Jan 22 2026 [Info Stealer/Host Data]
Published Jan 22, 2026
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-462.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-463.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-465.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-600.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-657.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-659.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-662.json
CVSS Score
Medium
5.3
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
@ikeacn/ui
0.0.1-security
npm
@ikeacn/ui
99.9.9
npm
@ikeacn/utils
0.0.1-security
npm
@ikeacn/utils
99.9.9
npm
@samsungads/beau
41.5.10
npm
atg-atgse
0.0.1-security
npm
atg-atgse
1.0.0
npm
atg-atgse
1.9.8
npm
atg-atgse
2.9.8
npm
atg-atgse
21.1.4
npm
atg-atgse
3.9.8
npm
atg-atgse
4.9.8
npm
atg-atgse
5.9.8
npm
corp-sign-core-js
0.99.99
npm
corp-sign-core-js
1.99.99
npm
corp-sign-core-js
2.99.99
npm
corporate-blocking
0.99.99
npm
corporate-blocking
1.99.99
npm
corporate-blocking
2.99.99
npm
react-dnd-legacy-html5-backend
0.0.1-security
npm
react-dnd-legacy-html5-backend
1.0.0
npm
react-dnd-legacy-html5-backend
31.0.1
npm
researchpoc
0.0.1-security
npm
researchpoc
1.0.0
npm
researchpoc2
0.0.1-security
npm
researchpoc2
1.0.0
1-26 of 26
sonatype-2026-000208 | Components Impacted | Sonatype Guide | Sonatype Guide
