Article 5RZYY GitHub fixes authorisation vulnerability in the NPM JavaScript package registry

GitHub fixes authorisation vulnerability in the NPM JavaScript package registry

from The Register on 2021-11-16 17:33 (#5RZYY)

Flaw allowed 'an attacker to publish new versions of any npm package'

GitHub said it has fixed a longstanding issue with the NPM (Node Package Manager) JavaScript registry that would allow an attacker to update any package without proper authorisation....

External Content

Source	RSS or Atom Feed
Feed Location	http://www.theregister.co.uk/headlines.atom
Feed Title	The Register
Feed Link	https://www.theregister.com/
Feed Copyright	Copyright © 2024, Situation Publishing

0 comments