express-lists-routes
MAL-2026-551
npmmalware1/28/2026
Description
Malicious code in express-lists-routes (npm)
Indicators of Compromise
SHA256 Hashes (3)
6fbbcbb5decaaf9198ffd90930c3e4e4e766d97925b6a22cf5ad2d0f1119ce73
2c51e8807ad317a804d1d70eac194db27d648b87308eaebf5e7752864c1c03e5
d980da55a7fe44b8c953d6597e4afa9a59c7f60e51f59a430c0e23c072f742c9
References (1)
Details
Ecosystemnpm
Attack Typemalware
Published1/28/2026
Affected Versions
0
Aliases
GHSA-qg82-jrgh-rv25
Quick Actions