Node.js third-party modules: [freespace] Command Injection due to Lack of Sanitization

I would like to report Command Injection in the freespace module. It allows an attacker to inject and execute shell commands on Unix based systems. Module module name: freespace version: 1.0.4 npm page: https://www.npmjs.com/package/freespace Module Description A library that tells you how much...

Assembla.com Cross Site Scripting

Date: 25.02.2012 Author: Sony Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC: http://st2tea.blogspot.com/2012/02/assemblacom-cross-site-scripting.html .................................................................. Create FreeSpace...