Lucene search
HackeroneCVELIST:CVE-2018-3774HistoryAug 12, 2018 - 10:00 p.m.
CVE-2018-3774
2018-08-1222:00:00
CWE-425
hackerone
www.cve.org
Incorrect parsing in url-parse <1.4.3 returns wrong hostname which leads to multiple vulnerabilities such as SSRF, Open Redirect, Bypass Authentication Protocol.
CNA Affected
[
{
"product": "url-parse",
"vendor": "HackerOne",
"versions": [
{
"status": "affected",
"version": "1.4.3"
}
]
}
]Related
redhatcve
redhatcve
CVE-2018-3774
2021-03-19 05:52:54
prion
prion
Design/Logic Flaw
2018-08-12 22:29:00
veracode
veracode
Wrong Hostname Return
2018-07-31 03:20:17
github
github
Open Redirect in url-parse
2018-08-13 15:02:15
cve
cve
CVE-2018-3774
2018-08-12 22:29:00
nodejs
nodejs
Open Redirect
2018-08-02 15:02:33
nvd
nvd
CVE-2018-3774
2018-08-12 22:29:00
hackerone
hackerone
Node.js third-party modules: url-parse package return wrong hostname
2018-07-19 09:49:12
curl: SSRF via maliciously crafted URL due to host confusion
2019-10-01 02:48:40
debiancve
debiancve
CVE-2018-3774
2018-08-12 22:29:00
osv
osv
Open Redirect in url-parse
2018-08-13 15:02:15
node-url-parse vulnerabilities
2023-03-27 14:59:16
ubuntucve
ubuntucve
CVE-2018-3774
2018-08-12 00:00:00
ubuntu
ubuntu
url-parse vulnerabilities
2023-03-27 00:00:00
nessus
nessus
openvas
openvas
Ubuntu: Security Advisory (USN-5973-1)
2023-03-28 00:00:00
redhat
redhat