Lucene search
HackeroneCVELIST:CVE-2020-8135HistoryMar 20, 2020 - 6:26 p.m.
CVE-2020-8135
2020-03-2018:26:32
CWE-918
hackerone
www.cve.org
The uppy npm package < 1.9.3 is vulnerable to a Server-Side Request Forgery (SSRF) vulnerability, which allows an attacker to scan local or external network or otherwise interact with internal systems.
CNA Affected
[
{
"product": "uppy",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Fixed Version: 1.9.3"
}
]
}
]References
Related
hackerone
hackerone
Node.js third-party modules: Server Side Request Forgery in Uppy npm module
2020-01-31 16:31:11
osv
osv
Server-Side Request Forgery in @uppy/companion
2020-09-03 15:51:19
CVE-2020-8135
2020-03-20 19:15:12
cve
cve
CVE-2020-8135
2020-03-20 19:15:12
veracode
veracode
Server-Side Request Forgery (SSRF)
2020-03-03 05:40:36
Server-Side Request Forgery (SSRF)
2020-06-29 02:56:26
nodejs
nodejs
Server-Side Request Forgery
2020-03-26 19:35:50
attackerkb
attackerkb
CVE-2020-8135
2020-03-20 00:00:00
prion
prion
Server side request forgery (ssrf)
2020-03-20 19:15:00
nvd
nvd
CVE-2020-8135
2020-03-20 19:15:12
githubexploit
githubexploit
Exploit for Server-Side Request Forgery in Uppy
2020-12-01 09:45:48
github
github
Server-Side Request Forgery in @uppy/companion
2020-09-03 15:51:19