Lucene search
K

188 matches found

CNVD
CNVD
added 2019/02/20 12:0 a.m.3 views

Unspecified Vulnerability in Total.js Platform

Total.js Platform is a suite of JavaScript Web platforms. The platform includes Total.js framework, Total.js apps, SQL Agent and NoSQL embedded DB. A security vulnerability exists in the index.js file in versions of Total.js Platform prior to 3.2.3. No details of the vulnerability are provided at...

7.5CVSS7.4AI score0.72058EPSS
Exploits2References1
Veracode
Veracode
added 2019/02/19 6:33 a.m.18 views

Path Traversal

total.js is vulnerable to path traversal attacks. The vulnerability exists in index.js where req.url is insufficiently sanitized, allowing path traversal attacks...

7.5CVSS7.3AI score0.72058EPSS
Exploits2References3Affected Software1
OSV
OSV
added 2019/02/18 4:29 p.m.17 views

CVE-2019-8903

index.js in Total.js Platform before 3.2.3 allows path traversal...

7.5CVSS6.7AI score0.72058EPSS
Exploits2References3
NVD
NVD
added 2019/02/18 4:29 p.m.17 views

CVE-2019-8903

index.js in Total.js Platform before 3.2.3 allows path traversal...

7.5CVSS7.5AI score0.72058EPSS
Exploits2References3
Prion
Prion
added 2019/02/18 4:29 p.m.9 views

Path traversal

index.js in Total.js Platform before 3.2.3 allows path traversal...

5CVSS7.4AI score0.72058EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2019/02/18 4:0 p.m.21 views

CVE-2019-8903

index.js in Total.js Platform before 3.2.3 allows path traversal...

7.5AI score0.72058EPSS
Exploits2References3
CVE
CVE
added 2019/02/18 4:0 p.m.72 views

CVE-2019-8903

Summary: CVE-2019-8903 affects Total.js Platform before 3.2.3 and is a path traversal/LFI issue in index.js. Multiple sources (NVD, Nuclei template, GHSA advisory, OpenVAS, AttackersKB) confirm that insufficient input sanitization in URLs allows an attacker to access files outside the public dire...

7.5CVSS7.3AI score0.72058EPSS
Exploits2References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2019/02/18 12:0 a.m.26 views

Total.js requestcontinue Directory Traversal Vulnerability

Total.js is prone to a directory traversal vulnerability. Attackers can exploit this issue and read files remotely. Recent assessments: Mad-robot at July 05, 2020 2:29pm UTC reported: Totaljs – Unathenticated Directory Traversal DESCRIPTION User can make requests like “GET...

7.5CVSS7.3AI score0.72058EPSS
Exploits2References4
Rows per page
Query Builder