mal-0000-reversing-labs-d3a02f766c3f0b73
Vulnerability from ossf_malicious_packages
Published
2025-12-23 08:03
Modified
2025-12-23 08:03
Summary
Details
{
"affected": [
{
"package": {
"ecosystem": "npm",
"name": "cross-sessions"
},
"versions": [
"2.4.1"
]
}
],
"aliases": [
"SNYK-JS-CROSSSESSIONS-13848820",
"GHSA-rpqv-w879-rhvh"
],
"database_specific": {
"malicious-packages-origins": [
{
"id": "RLUA-2025-06105",
"import_time": "2025-12-24T10:07:34.514993061Z",
"modified_time": "2025-12-23T08:03:46Z",
"sha256": "d3a02f766c3f0b73fd31969fa5edef5f2cb4d97da734753232ac62d0ed021284",
"source": "reversing-labs",
"versions": [
"2.4.1"
]
}
]
},
"id": "",
"modified": "2025-12-23T08:03:46Z",
"published": "2025-12-23T08:03:46Z",
"references": [
{
"type": "PACKAGE",
"url": "https://npmjs.com/package/cross-sessions"
},
{
"type": "ADVISORY",
"url": "https://github.com/advisories/GHSA-rpqv-w879-rhvh"
},
{
"type": "ARTICLE",
"url": "https://socket.dev/blog/north-korea-contagious-interview-npm-attacks"
},
{
"type": "ADVISORY",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSESSIONS-13848820"
}
],
"schema_version": "1.7.4"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…