Lucene search
Socket.io Node Module Security Vulnerabilities
cve
Socket.io is a realtime application framework that provides communication via websockets. Because socket.io 0.9.6 and earlier depends on Math.random() to create socket IDs, the IDs are predictable. An attacker is able to guess the socket ID and gain access to socket.io servers, potentially...
7.5CVSS
7.5AI Score
0.002EPSS
2018-06-04 07:29 PM
31