Back to directory
WRITEUP #687

Visual Studio Code Security: Finding New Vulnerabilities in the NPM Integration (3/3)

RCEArgument injectionSecurity code review
by@swapgs(Thomas Chauchefoin)
Program
Microsoft (VS Code)
Published
Nov 21, 2023
Added to HackDex
Jan 18, 2024
Read Full Writeuphttps://www.sonarsource.com/blog/vscode-security-finding-new-vulnerabilities-npm-integration/
RELATED WRITEUPS
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Back To School - Exploiting A Remote Code Execution Vulnerability In Moodle
RCESecurity code review
WordPress GiveWP POP to RCE (CVE-2024-5932)
RCEPHP pop chain
Traccar 5 Remote Code Execution Vulnerabilities
RCEUnrestricted file upload

Built with ❤️ by Shubham Rawat