RCE via npm misconfig -- installing internal libraries from the public registry

Disclosed: 2021-02-24 01:28:41 By alexbirsan To uber

Critical

Vulnerability Details

No vulnerability description provided or it is restricted.

Actions

View on HackerOne

Report Stats

Report ID: 1007014
State: Closed
Substate: resolved
Upvotes: 319

Share this report