Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:41 p.m.9 views

CVE-2022-24718

ssr-pages is an HTML page builder for the purpose of server-side rendering SSR. In versions prior to 0.1.4, a path traversal issue can occur when providing untrusted input to the svg property as an argument to the buildMessagePageOptions function. While there is no known workaround at this time,...

7.6CVSS6.5AI score0.01113EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/03/01 10:9 p.m.3 views

feling87-nodejs-libs (>=0.0.1 <=0.0.3) potentially affected by CVE-2022-24718 via @finastra/ssr-pages (=0.1.3)

@finastra/ssr-pages NPM version =0.1.3 is affected by a known vulnerability. The following packages have a transitive dependency on @finastra/ssr-pages and may be impacted: - feling87-nodejs-libs =0.0.1, =0.0.3 Source cves: CVE-2022-24718 Source advisory: OSV:GHSA-W6CX-QG2Q-RVQ8...

7.6CVSS6.8AI score0.01113EPSS
Exploits0
NVD
NVD
added 2022/03/01 7:15 p.m.29 views

CVE-2022-24718

ssr-pages is an HTML page builder for the purpose of server-side rendering SSR. In versions prior to 0.1.4, a path traversal issue can occur when providing untrusted input to the svg property as an argument to the buildMessagePageOptions function. While there is no known workaround at this time,...

7.6CVSS0.01113EPSS
Exploits0References3
CVE
CVE
added 2022/03/01 6:45 p.m.83 views

CVE-2022-24718

CVE-2022-24718 affects the ssr-pages HTML page builder. A path traversal vulnerability exists when untrusted input is provided to the svg property as an argument to build(MessagePageOptions). The issue is present in versions prior to 0.1.4. A patch is available in version 0.1.4 (upgrade to 0.1.4 ...

7.6CVSS6.5AI score0.01113EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/03/01 6:45 p.m.10 views

CVE-2022-24718 Path Traversal in ssr-pages

ssr-pages is an HTML page builder for the purpose of server-side rendering SSR. In versions prior to 0.1.4, a path traversal issue can occur when providing untrusted input to the svg property as an argument to the buildMessagePageOptions function. While there is no known workaround at this time,...

7.6CVSS7.4AI score0.01113EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/03/01 6:45 p.m.32 views

CVE-2022-24718 Path Traversal in ssr-pages

ssr-pages is an HTML page builder for the purpose of server-side rendering SSR. In versions prior to 0.1.4, a path traversal issue can occur when providing untrusted input to the svg property as an argument to the buildMessagePageOptions function. While there is no known workaround at this time,...

7.6CVSS7.6AI score0.01113EPSS
Exploits0References3
Rows per page
Query Builder