EUVD-2017-0364

Malware in sbrugna...

EUVD-2018-0201

Malware in sbrugna...

CVE-2019-10775

ecstatic have a denial of service vulnerability. Successful exploitation could lead to crash of an application...

1.1.0 (=1.0.0), 10f-css-animations (>=1.0.1 <=1.0.4) +1440 more potentially affected by CVE-2019-10775 via ecstatic (>=0.1.6 <=4.1.2)

ecstatic NPM version =0.1.6, =1.0.1, =0.0.1, =0.7.2, =0.1.0-beta-1, =0.1.0-alpha-0, =1.0.0, =0.4.0, =0.4.0, =0.11.1, =0.2.0, =10.0.0, =17.0.0-canary.1, =3.2.1, =4.1.0 and more Source cves: CVE-2019-10775 Source advisory: OSV:GHSA-JC84-3G44-WF2Q...

GHSA-JC84-3G44-WF2Q Denial of Service in ecstatic

ecstatic have a denial of service vulnerability. Successful exploitation could lead to crash of an application...

Open Redirect in ecstatic

Withdrawn: Duplicate of GHSA-9q64-mpxx-87fg...

GHSA-X4RF-4MQF-CM8W Open Redirect in ecstatic

Withdrawn: Duplicate of GHSA-9q64-mpxx-87fg...

3rr (>=0.0.1 <=0.0.2), @apatheticwes/trigger (>=0.1.0 <=0.2.0) +561 more potentially affected by CVE-2019-10775 via ecstatic (>=0.1.6 <=2.1.0)

ecstatic NPM version =0.1.6, =0.0.1, =0.1.0, =3.0.0-beta.45, =1.0.0, =0.2.3, =0.2.1, =1.0.0, =0.1.1, =0.0.1, =1.0.0, =2.1.1 and more Source cves: CVE-2019-10775 Source advisory: OSV:GHSA-9Q64-MPXX-87FG...

Open Redirect in ecstatic

Versions of ecstatic prior to 4.1.2, 3.3.2 or 2.2.2 are vulnerable to Open Redirect. The package fails to validate redirects, allowing attackers to craft requests that result in an HTTP 301 redirect to any other domains. Recommendation If using ecstatic 4.x, upgrade to 4.1.2 or later. If using...

cubx-http-server (=0.4.2), karma-extjs-jasmine-tester (>=1.0.0 <=1.1.3) +5 more potentially affected by CVE-2019-10775 via ecstatic (>=3.1.1 <=3.3.0)

ecstatic NPM version =3.1.1, =1.0.0, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.2.1 Source cves: CVE-2019-10775 Source advisory: OSV:GHSA-9Q64-MPXX-87FG...

GHSA-9Q64-MPXX-87FG Open Redirect in ecstatic

Versions of ecstatic prior to 4.1.2, 3.3.2 or 2.2.2 are vulnerable to Open Redirect. The package fails to validate redirects, allowing attackers to craft requests that result in an HTTP 301 redirect to any other domains. Recommendation If using ecstatic 4.x, upgrade to 4.1.2 or later. If using...

ecstatic denial of service vulnerability

ecstatic is a simple static file server middleware. A denial of service vulnerability exists in ecstatic. An attacker could exploit this vulnerability to cause the application to crash...

CVE-2019-10775

ecstatic have a denial of service vulnerability. Successful exploitation could lead to crash of an application...

Denial of service

ecstatic have a denial of service vulnerability. Successful exploitation could lead to crash of an application...

CVE-2019-10775

ecstatic have a denial of service vulnerability. Successful exploitation could lead to crash of an application...

Denial of Service (DoS)

Overview ecstatic is a simple static file server middleware. Use it with a raw http server, express/connect or on the CLI. Affected versions of this package are vulnerable to Denial of Service DoS. It is possible to crash a server using the package due to the way URL params parsing is handled...

netlify-plugin-cypress (>=1.0.2 <=1.3.3) potentially affected by CVE-2019-10775 via ecstatic (=4.1.2)

ecstatic NPM version =4.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on ecstatic and may be impacted: - netlify-plugin-cypress =1.0.2, =1.3.3 Source cves: CVE-2019-10775 Source advisory: SNYK:JS-ECSTATIC-540354...

Open Redirection

ecstatic is vulnerable to open redirection. A lack of validation in the URL redirect allows an attacker to craft malicious requests that redirect users to a malicious site in an HTTP 301 redirect...

Open Redirect

Overview Versions of ecstatic prior to 4.1.2, 3.3.2 or 2.2.2 are vulnerable to Open Redirect. The package fails to validate redirects, allowing attackers to craft requests that result in an HTTP 301 redirect to any other domains. Recommendation If using ecstatic 4.x, upgrade to 4.1.2 or later. If...

ecstatic node module denial of service vulnerability

ecstatic node module is a http cooperative static file server middleware . A security vulnerability exists in ecstatic node module versions prior to 1.4.0. An attacker can exploit this vulnerability to cause a denial of service crash by sending input with the help of the If-Modified-Since packet...