Lucene search
K

81 matches found

osv
osv
added 2019/02/18 11:35 p.m.14 views

GHSA-5M9C-634G-47VQ steroids downloads resources over HTTP

Affected versions of steroids insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

8.1CVSS8.1AI score0.01682EPSS
Exploits0References6
github
github
added 2019/02/18 11:35 p.m.21 views

steroids downloads resources over HTTP

Affected versions of steroids insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

9.3CVSS2AI score0.01682EPSS
Exploits0References6Affected Software1
nodejs
nodejs
added 2019/02/14 1:42 a.m.16 views

Denial of Service

Overview All versions of url-relative are vulnerable to Denial of Service. If the values to and from are equal, the function hangs and never returns. This may cause a Denial of Service. Recommendation No fix is currently available. Consider using an alternative module until a fix is made availabl...

6.8AI score
Exploits0Affected Software1
nodejs
nodejs
added 2019/02/06 12:56 a.m.26 views

Prototype Pollution

Overview All versions of defaults-deep are vulnerable to prototype pollution. Provided certain input defaults-deep can add or modify properties of the Object prototype. These properties will be present on all objects. Recommendation As no patch is currently available for this vulnerability it is...

7.5CVSS2.9AI score0.01481EPSS
Exploits1Affected Software1
nodejs
nodejs
added 2019/01/25 7:52 p.m.11 views

Remote Code Execution

Overview All versions of pivideorecording are vulnerable to Remote Code Execution. Due to insufficient input validation the server executes arbitrary code through the /api/record/start endpoint. After running the server, curl -POST -H "Content-Type: application/json" -d '"filename": " || touch...

7.7AI score
Exploits0Affected Software1
nodejs
nodejs
added 2019/01/04 9:21 p.m.15 views

Remote Code Execution

Overview All versions of office-converter are vulnerable to Remote Code Execution. Due to insufficient input validation an attacker could run arbitrary commands on the server thus rendering the package vulnerable to Remote Code Execution. Recommendation No fix is currently available. Consider usi...

7.4AI score
Exploits0Affected Software1
nodejs
nodejs
added 2018/12/28 9:18 p.m.26 views

Remote Code Execution

Overview All versions of pomelo-monitor are vulnerable to Remote Code Execution. Due to insufficient input validation an attacker could run arbitrary commands on the server thus rendering the package vulnerable to Remote Code Execution. Recommendation No fix is currently available. Consider using...

7.4AI score
Exploits0Affected Software1
nodejs
nodejs
added 2018/12/26 4:17 p.m.24 views

Sensitive Data Exposure

Overview All versions of rails-session-decoder are missing verification of the Message Authentication Code appended to the cookies. This may lead to decryption of cipher text thus exposing encrypted information. Recommendation No fix is currently available. Consider using an alternative module...

7AI score
Exploits0Affected Software1
nodejs
nodejs
added 2018/12/26 1:54 p.m.12 views

Undefined Behavior

Overview All versions of sailsjs-cacheman have a vulnerability that may lead to Undefined Behavior. The config variable is exposing to the global scope which may overwrite other variables and cause the application to misbehave. Recommendation No fix is currently available. Consider using an...

6.8AI score
Exploits0Affected Software1
osv
osv
added 2018/12/06 3:49 p.m.32 views

GHSA-VWR2-WJ63-86GR Path Traversal in simplehttpserver

All versions of simplehttpserver are vulnerable to Path Traversal. This vulnerability allows an attacker to access files outside the webroot since it allows symlink navigation in the URL. Recommendation No fix is currently available. Do not use simplehttpserver in production or consider using an...

5.3CVSS5AI score0.01295EPSS
Exploits0References6
github
github
added 2018/12/06 3:49 p.m.70 views

Path Traversal in simplehttpserver

All versions of simplehttpserver are vulnerable to Path Traversal. This vulnerability allows an attacker to access files outside the webroot since it allows symlink navigation in the URL. Recommendation No fix is currently available. Do not use simplehttpserver in production or consider using an...

5.3CVSS4AI score0.01295EPSS
Exploits0References5Affected Software1
nodejs
nodejs
added 2018/11/08 8:48 p.m.15 views

Denial of Service

Overview All versions of ircdkit are vulnerable to remote denial of service. Recommendation As no current fix is available if you rely on ircdkit in production it might be best to consider another module. References - GitHub Issue - GitHub Advisory...

6.8AI score
Exploits0Affected Software1
osv
osv
added 2018/09/18 1:47 p.m.14 views

GHSA-M8CR-Q935-8J67 Path Traversal in buttle

All versions of buttle are vulnerable to Path Traversal. Due to insufficient input sanitization, attackers can access server files by using relative paths when fetching files. Recommendation No fix is currently available. Consider using an alternative module until a fix is made available...

7.5CVSS7.4AI score0.01918EPSS
Exploits1References4
github
github
added 2018/09/18 1:47 p.m.29 views

Path Traversal in buttle

All versions of buttle are vulnerable to Path Traversal. Due to insufficient input sanitization, attackers can access server files by using relative paths when fetching files. Recommendation No fix is currently available. Consider using an alternative module until a fix is made available...

7.5CVSS4.5AI score0.01918EPSS
Exploits1References4Affected Software1
osv
osv
added 2018/08/21 5:2 p.m.16 views

GHSA-38F5-GHC2-FCMV Code Injection in cryo

All versions of cryo are vulnerable to code injection due to an Insecure implementation of deserialization. Proof of concept js var Cryo = require'cryo'; var frozen = '"root":"CRYOREF3","references":"contents":,"value":"CRYOFUNCTIONfunction console.log\"defconrussia\"; return...

9.8CVSS5.9AI score0.03252EPSS
Exploits1References4
github
github
added 2018/08/21 5:2 p.m.24 views

Code Injection in cryo

All versions of cryo are vulnerable to code injection due to an Insecure implementation of deserialization. Proof of concept js var Cryo = require'cryo'; var frozen = '"root":"CRYOREF3","references":"contents":,"value":"CRYOFUNCTIONfunction console.log\"defconrussia\"; return...

9.8CVSS9.3AI score0.03252EPSS
Exploits1References4Affected Software1
nodejs
nodejs
added 2018/04/24 2:21 p.m.23 views

Cross-Site Scripting

Overview Versions of html-janitor prior to 2.0.2 all current versions are vulnerable to cross-site scripting XSS. This is exploitable if user-controlled data is passed into the modules clean function. Recommendation No fix is currently available for this vulnerability. It is recommended to use an...

4.3CVSS1.8AI score0.01063EPSS
Exploits1Affected Software1
nodejs
nodejs
added 2016/11/30 9:39 p.m.39 views

Downloads Resources over HTTP

Overview Affected versions of steroids insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on...

9.3CVSS2AI score0.01682EPSS
Exploits0Affected Software1
nodejs
nodejs
added 2016/10/17 4:8 p.m.122 views

Directory Traversal

Overview Affected versions of bitty are vulnerable to directory traversal via the URL path in GET requests. Recommendation The bitty package is not currently maintained, and has not seen an update since 2015. At this time, the best available mitigation is to use an alternative module that is...

5CVSS4.5AI score0.01496EPSS
Exploits0Affected Software1
nodejs
nodejs
added 2016/08/04 9:19 p.m.24 views

Spoofing attack due to unvalidated KDC

Overview Affected versions of node-krb5 do not validate the KDC prior to authenticating, which might allow an attacker with network access and enough time to spoof the KDC and impersonate a valid user without knowing their credentials. Recommendation It appears that this will remain unfixed...

4.5AI score0.00615EPSS
Exploits0Affected Software1
Rows per page
Query Builder