Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 2596 | PHP Supply Chain Attack on Composer | Argument injection RCE Supply chain attack Security code review | Packagist | Thomas Chauchefoin (@swapgs) | Bug Bounty | 2021-04-29 | 2023-06-13 |
| 1262 | Security Implications of URL Parsing Differentials | Open redirect URL parsing differentials bug URL parsing issue | Thomas Chauchefoin (@swapgs) | Security Implications of URL Parsing Differentials | Bug Bounty | 2022-08-09 | 2023-06-13 |
| 1184 | Securing Developer Tools: Argument Injection in Visual Studio Code | Argument injection RCE | Microsoft | Thomas Chauchefoin (@swapgs) | Bug Bounty | 2022-08-23 | 2023-06-13 |
| 1002 | Securing Developer Tools: A New Supply Chain Attack on PHP | Argument injection RCE Supply chain attack Security code review | Packagist | Thomas Chauchefoin (@swapgs) | Bug Bounty | 2022-10-04 | 2023-06-13 |
| 377 | Empowering weak primitives: file truncation to code execution with Git | Argument injection RCE | NA | Thomas Chauchefoin (@swapgs) | Bug Bounty | 2023-02-28 | 2023-06-13 |