Back to directory

WRITEUP #341

Dependency Confusion Vulnerability Found in an Archived Apache Project

OtherDependency confusion

byOfek Haviv

Program

Apache

Published

Apr 22, 2024

Added to HackDex

May 11, 2024

Read Full Writeuphttps://www.legitsecurity.com/blog/dependency-confusion-vulnerability-found-in-an-archived-apache-project

▸ RELATED WRITEUPS

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Built with ❤️ by Shubham Rawat