@replit/crosis is vulnerable to information disclosure. The vulnerability exists due to the exposure of sensitive information, multiple communication failed attempts to Replit, allowing an attacker to access the previous URL and retrieve the same destination without permission.