MAL-2024-3016

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sift-web-sdk/MAL-2024-3016.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2024-3016
Published
2024-06-25T13:00:49Z
Modified
2024-10-24T01:01:57Z
Summary
Malicious code in sift-web-sdk (npm)
Details

-= Per source details. Do not edit below this line.=-

Database specific 
{
    "malicious-packages-origins": [
        {
            "versions": [
                "100.0.0",
                "101.0.0"
            ],
            "modified_time": "2024-06-25T13:00:49Z",
            "sha256": "812b78d90d21b632afa574a4b9283bc97471be57ba5934f5d7e6bfebeeef3ec5",
            "id": "RLMA-2024-01745",
            "source": "reversing-labs",
            "import_time": "2024-06-28T02:44:44.198363448Z"
        },
        {
            "modified_time": "2024-10-16T13:19:03Z",
            "sha256": "551ab00742c4f41d3e867cc56ab3c5021eaa547a71606f11178a543877de078a",
            "id": "RLUA-2024-07300",
            "source": "reversing-labs",
            "import_time": "2024-10-24T00:58:20.622912355Z"
        }
    ]
}
References
Credits

Affected packages

npm / sift-web-sdk

Package

Name
sift-web-sdk
View open source insights on deps.dev
Purl
pkg:npm/sift-web-sdk

Affected ranges

Affected versions

100.*
100.0.0
101.*
101.0.0

Database specific

source 
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sift-web-sdk/MAL-2024-3016.json"