Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:0 a.m.7 views

CVE-2020-7675

cd-messenger through 2.7.26 is vulnerable to Arbitrary Code Execution. User input provided to the color argument executed by the eval function resulting in code execution...

9.8CVSS7.1AI score0.02512EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2021/05/17 9:0 p.m.10 views

cd-core (>=0.0.3 <=0.0.11) potentially affected by CVE-2020-7675 via cd-messenger (=2.7.12)

cd-messenger NPM version =2.7.12 is affected by a known vulnerability. The following packages have a transitive dependency on cd-messenger and may be impacted: - cd-core =0.0.3, =0.0.11 Source cves: CVE-2020-7675 Source advisory: OSV:GHSA-V756-4WHV-48VC...

9.8CVSS7.2AI score0.02512EPSS
Exploits1
CVE
CVE
added 2020/06/10 3:36 p.m.48 views

CVE-2020-7675

CVE-2020-7675 affects cd-messenger up to version 2.7.26. The issue is an Arbitrary Code Execution vulnerability caused by unvalidated input passed to the color parameter, which is evaluated via eval. This results in code execution and potential impact on confidentiality, integrity, and availabili...

9.8CVSS9.6AI score0.02512EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2020/06/05 2:29 p.m.4 views

cd-core (>=0.0.3 <=0.0.11) potentially affected by CVE-2020-7675 via cd-messenger (=2.7.12)

cd-messenger NPM version =2.7.12 is affected by a known vulnerability. The following packages have a transitive dependency on cd-messenger and may be impacted: - cd-core =0.0.3, =0.0.11 Source cves: CVE-2020-7675 Source advisory: SNYK:JS-CDMESSENGER-571493...

9.8CVSS7.2AI score0.02512EPSS
Exploits1
Rows per page
Query Builder