1294 matches found
CVE-2017-16008
creationtimestamp| type| source ---|---|--- 2018-11-09 17:46:56+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-f89g-whpf-6q9m...
CVE-2017-16017
creationtimestamp| type| source ---|---|--- 2018-11-09 17:45:55+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-wg96-3933-j2w5...
CVE-2017-16018
creationtimestamp| type| source ---|---|--- 2018-11-09 17:45:38+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-qw3g-35hc-fcrh...
Denial of Service
Overview All versions of ircdkit are vulnerable to remote denial of service. Recommendation As no current fix is available if you rely on ircdkit in production it might be best to consider another module. References - GitHub Issue - GitHub Advisory...
Command Injection
Overview Versions of samsung-remote before 1.3.5 are vulnerable to command injection. This vulnerability is exploitable if user input is passed into the ip option of the package constructor. Recommendation Update to version 1.3.5 or later. References - HackerOne Report - Node.js security-wg -...
Command Injection
Overview Versions of ps before 1.0.0 are vulnerable to command injection. Proof of concept: var ps = require'ps'; ps.lookup pid: "$touch success.txt" , functionerr, proc // this method is vulnerable to command injection if err throw err; if proc console.logproc; // Process name, something like...
NoSQL injection
Overview Versions of express-cart before 1.1.8 are vulnerable to NoSQL injection. The vulnerability is caused by the lack of user input sanitization in the login handlers. In both cases, the customer login and the admin login, parameters from the JSON body are sent directly into the MongoDB query...
CVE-2014-9772
creationtimestamp| type| source ---|---|--- 2018-11-06 23:12:49+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-79mx-88w7-8f7q...
Sensitive Data Exposure
Overview Versions of pem before 1.13.2 expose sensitive data when the readPkcs12 is used. The readPkcs12 function reads the certificate and key data from a pkcs12 file using the encryption password. As part of this process it creates a globally readable file with a filename of 20 random 0-f...
Prototype Pollution
Overview Versions of merge before 1.2.1 are vulnerable to prototype pollution. The merge.recursive function can be tricked into adding or modifying properties of the Object prototype. Recommendation Update to version 1.2.1 or later. References - HackerOne Report - GitHub Advisory...
Command Injection
Overview Versions of libnmap before 0.4.16 are vulnerable to command injection. Proof of concept const nmap = require'libnmap'; const opts = range: 'scanme.nmap.org', "x.x.$touch success.txt" ; nmap.scanopts, functionerr, report if err throw new Errorerr; for let item in report...
Prototype Pollution
Overview All versions of merge-objects are vulnerable to Prototype Pollution. Recommendation No fix is available for this vulnerability at this time. It is our recommendation to use an alternative package. References - HackerOne Report - GitHub Advisory...
Prototype Pollution
Overview All versions of merge-recursive are vulnerable to Prototype Pollution. When malicious user input is merged with another object it allows the attacker to modify the prototype of Object via proto causing the addition or modification of an existing property. Proof of concept: var merge =...
CVE-2016-10540
creationtimestamp| type| source ---|---|--- 2018-10-09 00:40:41+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-hxm2-r34f-qmc5...
CVE-2017-0930
creationtimestamp| type| source ---|---|--- 2018-09-18 13:50:25+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-4wch-fwmx-cf47...
CVE-2018-16460
creationtimestamp| type| source ---|---|--- 2018-09-17 20:43:59+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-cfhg-9x44-78h2...
NoSQL Injection
Overview Versions of loopback-connector-mongodb before 3.6.0 are vulnerable to NoSQL injection. MongoDB Connector for LoopBack fails to properly sanitize a filter passed to query the database by allowing the dangerous $where property to be passed to the MongoDB Driver. The Driver allows the speci...
Command Injection
Overview Versions of egg-scripts before 2.8.1 are vulnerable to command injection. This is only exploitable if a malicious argument is provided on the command line. Example: eggctl start --daemon --stderr='/tmp/eggctlstderr.log; touch /tmp/malicious' Recommendation Update to version 2.8.1 or late...
CVE-2018-3784
creationtimestamp| type| source ---|---|--- 2018-08-21 17:02:43+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-38f5-ghc2-fcmv...
Code Injection
Overview All versions of cryo are vulnerable to code injection due to an Insecure implementation of deserialization. Proof of concept var Cryo = require'cryo'; var frozen = '"root":"CRYOREF3","references":"contents":,"value":"CRYOFUNCTIONfunction console.log\"defconrussia\"; return...