Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2017/10/24 6:33 p.m.5 views

37fis (>=1.0.0 <=1.0.2), @byted/beejs (>=1.0.1 <=1.2.18) +842 more potentially affected by CVE-2015-8859 via send (>=0.0.1 <=0.11.0)

send NPM version =0.0.1, =1.0.0, =1.0.1, =0.0.2, =0.0.1, =2.0.2, =1.0.4, =1.0.1, =0.0.1, =0.1.3, =1.0.0, =0.2.1, =1.0.8, =1.2.2-hotfix - acsjin =1.1.6 and more Source cves: CVE-2015-8859 Source advisory: OSV:GHSA-JGQF-HWC5-HH37...

5.3CVSS6.7AI score0.04697EPSS
Exploits0
OSV
OSV
added 2017/01/23 9:59 p.m.2 views

DEBIAN-CVE-2015-8859

The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors...

5.3CVSS7AI score0.04697EPSS
Exploits0References1
OSV
OSV
added 2017/01/23 9:59 p.m.3 views

UBUNTU-CVE-2015-8859

The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors...

5.3CVSS7.2AI score0.04697EPSS
Exploits0References4
CVE
CVE
added 2017/01/23 9:0 p.m.67 views

CVE-2015-8859

CVE-2015-8859 concerns the Node.js send package prior to 0.11.1, where an information leakage/root path disclosure vulnerability exists via unspecified vectors. Connected sources (GHSA-... and OSV entries) confirm this vulnerability, with remediation advised to upgrade to 0.11.1 or later. Affecte...

5.3CVSS5.1AI score0.04697EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2017/01/23 9:0 p.m.17 views

CVE-2015-8859

The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors...

5.3CVSS6.3AI score0.04697EPSS
Exploits0
Rows per page
Query Builder