Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 1656 | New npm Flaws Let Attackers Better Target Packages for Account Takeover | Information disclosure | GitHub | Yakir Kadkoda | Bug Bounty | 2022-04-05 | 2023-06-13 |
| 1597 | Package Planting: Are You [Unknowingly] Maintaining Poisoned Packages? | Logic flaw | GitHub | Yakir Kadkoda | Bug Bounty | 2022-04-26 | 2023-06-13 |
| 1376 | CVE-2022-32223 Discovery: DLL Hijacking via npm CLI | DLL Hijacking Privilege escalation | Node.js | Yakir Kadkoda | Bug Bounty | 2022-07-12 | 2023-06-13 |
| 970 | Threat Alert: Private npm Packages Disclosed via Timing Attacks | Timing attack Supply chain attack | GitHub | Yakir Kadkoda | Bug Bounty | 2022-10-12 | 2023-06-13 |