CVE-2023-1767

MEDIUM

Snyk Advisor <28th March 2023 - XSS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-1767. PoCs published by weizman.

AI-analyzed exploit summary This repository demonstrates a Stored XSS vulnerability (CVE-2023-1767) in Snyk's npm package advisor. The exploit leverages a malicious README.md file in a fake npm package to inject JavaScript payloads, which are improperly sanitized by Snyk's frontend.

Description

The Snyk Advisor website (https://snyk.io/advisor/) was vulnerable to a stored XSS prior to 28th March 2023. A feature of Snyk Advisor is to display the contents of a scanned package's Readme on its package health page. An attacker could create a package in NPM with an associated markdown README file containing XSS-able HTML tags. Upon Snyk Advisor importing the package, the XSS would run each time an end user browsed to the package's page on Snyk Advisor.

Exploits (1)

nomisec WORKING POC 2 stars
by weizman · poc
https://github.com/weizman/CVE-2023-1767

This repository demonstrates a Stored XSS vulnerability (CVE-2023-1767) in Snyk's npm package advisor. The exploit leverages a malicious README.md file in a fake npm package to inject JavaScript payloads, which are improperly sanitized by Snyk's frontend.

Classification
Working Poc 95%
Attack Type
Xss
Complexity
Moderate
Reliability
Reliable
Target: Snyk.io npm package advisor
No auth needed
Prerequisites: Ability to publish a malicious npm package · Victim interaction with Snyk's advisor page
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 4.3
EPSS 0.0051
EPSS Percentile 40.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
snyk/advisor < 2023-03-28
Published Apr 20, 2023
Tracked Since Feb 18, 2026