Back to directory
WRITEUP #1306

CVE-2023-1767 - Stored XSS on Snyk Advisor service can allow full fabrication of npm packages health score

XSSStored XSSMarkdown XSSSupply chain attack
by@WeizmanGal(Gal Weizman)
Program
Snyk
Published
Apr 10, 2023
Added to HackDex
May 4, 2023
Read Full Writeuphttps://weizman.github.io/2023/04/10/snyk-xss/
RELATED WRITEUPS
Stored XSS in LibreOffice
XSSStored XSS
Persistent XSS on Microsoft Bing.com by poisoning Bingbot indexing
XSSStored XSS
Canary Token OSS Security Audit Report (Q2 2024)
XSSDoS
Type confusion attacks in ProseMirror editors
XSSType confusion
Self-XSS to ATO via Site Features
XSSSelf-XSS

Built with ❤️ by Shubham Rawat