2 matches found
@eins78/pixelstatus (>=1.0.0 <=1.1.1), @icehunter/hapi-api (=1.0.8) +205 more potentially affected by CVE-2016-10543 via call (=2.0.2)
call NPM version =2.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on call and may be impacted: - @eins78/pixelstatus =1.0.0, =1.0.5, =1.0.0-alpha10, =0.1.0, =0.1.2, =1.0.0, =0.0.1, =0.0.2 and more Source cves: CVE-2016-10543 Source advisory:...
CVE-2016-10543
The vulnerability CVE-2016-10543 affects the call HTTP router used by the hapi framework, with versions 2.0.1–3.0.1 not validating empty parameters, permitting bypass of route validation rules. Impact is described as potential input bypass leading to validation bypass. The public advisories (GitH...