VDB

MAL-2026-2419

MAL-2026-2419 PUBLISHED

Malicious code in express-session-js (npm)

Affected Products

VendorProductVersions
npmexpress-session-js0, 0

Timeline

  • Apr 2, 2026 CVE Published
  • Apr 7, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›