Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
NPM fixes private package names leak, serious authorization bug
Malware and Vulnerabilities
November 16, 2021
Bleeping Computer
Out of the two disclosed flaws, the first one concerns the leak of names of private npm packages on the npmjs.com's 'replica' server—feeds from which are consumed by third-party services.
Read More
Npm
improper authorization vulnerability
Data Leak
Replication Server
npm Packages
Publisher
Previous
TikTok scammers tried hacking 125 targets that followed ...
Identity Theft, Fraud, Scams
Next
Vulnerabilities in Lantronix PremierWave 2050 could lea ...
Malware and Vulnerabilities