Lucene search

K

Node-red-dashboard Security Vulnerabilities

cve
cve

CVE-2022-3783

A vulnerability, which was classified as problematic, has been found in node-red-dashboard. This issue affects some unknown processing of the file components/ui-component/ui-component-ctrl.js of the component ui_text Format Handler. The manipulation leads to cross site scripting. The attack may be....

6.1CVSS

6AI Score

0.001EPSS

2022-10-31 09:15 PM
26
cve
cve

CVE-2021-3223

Node-RED-Dashboard before 2.26.2 allows ui_base/js/..%2f directory traversal to read...

7.5CVSS

7.4AI Score

0.096EPSS

2021-01-26 06:16 PM
39
3
cve
cve

CVE-2019-10756

It is possible to inject JavaScript within node-red-dashboard versions prior to version 2.17.0 due to the ui_notification node accepting raw HTML by...

5.4CVSS

5.3AI Score

0.001EPSS

2019-10-08 07:15 PM
27