writeups.xyz / "Zero-Days" Without Incident - Compromising Angular via Expired npm Publisher Email Domains

Submitter : c2a

Date: 11 February 2022

Bounty : undisclosed

Vulnerabilities :

Supply Chain Attack

Programs :

GitHub

Authors :

Matthew Bryant (@IAmMandatory)

Link :
https://thehackerblog.com/zero-days-without-incident-compromising-angular-via-expired-npm-publisher-email-domains-7kZplW4x/