MAL-2025-3541

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/express-cookie-parser/MAL-2025-3541.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2025-3541

Published

2025-04-23T09:23:53Z

Modified

2025-04-23T09:23:53Z

Summary

Malicious code in express-cookie-parser (npm)

Details

This package impersonates the popular 'cookie-parser' package. Remote code execution, persistence, self-deletion, and obfuscation found in the package's code confirm its malicious nature.

Database specific

{
    "malicious-packages-origins": null
}

References

Credits

- Safedep - FINDER
- - https://safedep.io/

Affected packages

npm / express-cookie-parser

Package

Name: express-cookie-parser; View open source insights on deps.dev
Purl: pkg:npm/express-cookie-parser

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/express-cookie-parser/MAL-2025-3541.json"