{"uuid": "4f897861-0a7a-4cd4-bca1-bf73a62aecf9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-37712", "type": "published-proof-of-concept", "source": "https://t.me/cKure/7189", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 5 RCEs in npm for $15,000+.\n\n\u25aa\ufe0eCVE-2021-32804\u00a0($10,000)\n\u25aa\ufe0eCVE-2021-32803\u00a0($2,000)\n\u25aa\ufe0eCVE-2021-37701\u00a0($2,500)\n\u25aa\ufe0eCVE-2021-37712\u00a0(found internally - $1,000 token payout)\n\u25aa\ufe0eCVE-2021-37713\u00a0(found internally)\u25aa\ufe0eCVE-2021-39134\u00a0(TBD)\n\nhttps://robertchen.cc/blog/2021/09/20/npm-rce", "creation_timestamp": "2021-09-21T07:57:09.000000Z"}