Back to directory
WRITEUP #278

How a Single Vulnerability Can Bring Down the JavaScript Ecosystem

AI / LLMWeb cache poisoningCPDoSSupply chain attack
by@0xLupin(Roni Carta)
Bounty
500
Program
GitHub (npm)
Published
Jun 3, 2024
Added to HackDex
Jul 1, 2024
Read Full Writeuphttps://www.landh.tech/blog/20240603-npm-cache-poisoning/
RELATED WRITEUPS
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk
AI / LLMCI/CD
Gudifu: Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
OtherWeb cache poisoning
GitHub Actions Exploitation: Repo Jacking And Environment Manipulation
AI / LLMRepojacking
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective
AI / LLMAI
Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information
AI / LLMAI

Built with ❤️ by Shubham Rawat