Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2026-000345
sonatype-2026-000345
Malicious Packages - Thu Feb 05 2026 [Credential Stealer]
Published Feb 6, 2026
https://help.sonatype.com/en/sonatype-malware-data.html
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-786.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-787.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-788.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-791.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-792.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-793.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-794.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-795.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-796.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-797.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-798.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-799.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-800.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-801.json
https://osv-vulnerabilities.storage.googleapis.com/npm/MAL-2026-802.json
CVSS Score
High
7.1
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
@hashicorp-internal/vault-reporting
136.3.1
npm
@meli-lint/eslint-config-base
33.4.1
npm
@meli-lint/eslint-config-base-ts
3.4.1
npm
@meli-lint/eslint-config-base-ts
33.4.1
npm
@meli-lint/eslint-config-tests-jest
3.4.1
npm
@meli-lint/eslint-config-tests-jest
33.4.1
npm
@opposhop/nuxt-ssr-cache
136.3.1
npm
@rdxportal/ui-components
136.3.1
npm
@rsgweb/locale-tools
136.3.1
npm
@rsgweb/modules-core-feedback
136.3.1
npm
@rsgweb/modules-core-www-page
136.3.1
npm
@rsgweb/rockstar-account
136.3.1
npm
@rsgweb/tina
136.3.1
npm
@rsgweb/utils
136.3.1
npm
@sbseg-plugin/qbo-web-app-ui
136.3.1
npm
@sporting-life/sportinglife-be
0.0.1-security
npm
@sporting-life/sportinglife-be
386.3.1
npm
@sporting-life/sportinglife-betslip-sdk
0.0.1-security
npm
@sporting-life/sportinglife-betslip-sdk
136.3.1
1-19 of 19
sonatype-2026-000345 | Components Impacted | Sonatype Guide | Sonatype Guide
