5 matches found
37fis (>=1.0.0 <=1.0.2), @byted/beejs (>=1.0.1 <=1.2.18) +842 more potentially affected by CVE-2015-8859 via send (>=0.0.1 <=0.11.0)
send NPM version =0.0.1, =1.0.0, =1.0.1, =0.0.2, =0.0.1, =2.0.2, =1.0.4, =1.0.1, =0.0.1, =0.1.3, =1.0.0, =0.2.1, =1.0.8, =1.2.2-hotfix - acsjin =1.1.6 and more Source cves: CVE-2015-8859 Source advisory: OSV:GHSA-JGQF-HWC5-HH37...
DEBIAN-CVE-2015-8859
The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors...
UBUNTU-CVE-2015-8859
The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors...
CVE-2015-8859
CVE-2015-8859 concerns the Node.js send package prior to 0.11.1, where an information leakage/root path disclosure vulnerability exists via unspecified vectors. Connected sources (GHSA-... and OSV entries) confirm this vulnerability, with remediation advised to upgrade to 0.11.1 or later. Affecte...
CVE-2015-8859
The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors...