FULL THROTTLE FAT LOSS: New ask Hacker News story: Backdoor injected to NPM express-cookies package Backdoor injected to NPM express-cookies package

Thursday, 3 May 2018

New ask Hacker News story: Backdoor injected to NPM express-cookies package Backdoor injected to NPM express-cookies package

Backdoor injected to NPM express-cookies package
52 by ekke | 8 comments on Hacker News.
Remote code injection vulnerability wild in public npm package, plausible-sounding 'express-cookies' and its dependency 'getcookies'. >10K downloads during April. Vulnerable code: https://ift.tt/2FzEZVN https://ift.tt/2KpZXdb

Remote code injection vulnerability wild in public npm package, plausible-sounding 'express-cookies' and its dependency 'getcookies'. >10K downloads during April. Vulnerable code: https://ift.tt/2FzEZVN https://ift.tt/2KpZXdb

FULL THROTTLE FAT LOSS

Thursday, 3 May 2018

New ask Hacker News story: Backdoor injected to NPM express-cookies package Backdoor injected to NPM express-cookies package

No comments:

Post a Comment