Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

663 matches found

Node.js
Node.jsadded 2016/12/01 7:16 p.m.33 views

Downloads Resources over HTTP

Overview Affected versions of prebuild-lwip insecurely download resources over HTTP. In scenarios where an attacker has a privileged network position, they can modify or read such resources at will. While the exact severity of impact for a vulnerability like this is highly variable and depends on...

6.8CVSS2.6AI score0.00546EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 7:14 p.m.29 views

Downloads Resources over HTTP

Overview Affected versions of frames-compiler insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code...

9.3CVSS6.2AI score0.02104EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 6:58 p.m.38 views

Downloads Resources over HTTP

Overview Affected versions of slimerjs-edge insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code executio...

9.3CVSS6.2AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 5:27 p.m.22 views

Downloads Resources over HTTP

Overview Affected versions of haxe-dev insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on...

9.3CVSS4.9AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 5:18 p.m.27 views

Downloads Resources over HTTP

Overview Affected versions of cmake insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

9.3CVSS4.3AI score0.02104EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 5:15 p.m.25 views

Downloads Resources over HTTP

Overview Affected versions of scalajs-standalone-bin insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code...

9.3CVSS6.2AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 4:45 p.m.27 views

Downloads Resources over HTTP

Overview Affected versions of scala-bin insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on...

9.3CVSS6.2AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 4:17 p.m.19 views

Downloads Resources over HTTP

Overview Affected versions of selenium-wrapper insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code...

9.3CVSS6.2AI score0.02104EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 4:15 p.m.29 views

Downloads Resources over HTTP

Overview Affected versions of apk-parser2 insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution ...

9.3CVSS5.7AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 4:7 p.m.32 views

Downloads Resources over HTTP

Overview Affected versions of macaca-chromedriver-zxa insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in cod...

9.3CVSS5.3AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 3:57 p.m.23 views

Downloads Resources over HTTP

Overview Affected versions of box2d-native insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution...

9.3CVSS6.2AI score0.01682EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 3:34 p.m.33 views

Downloads Resources over HTTP

Overview Affected versions of curses insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on th...

9.3CVSS5.9AI score0.01682EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 3:16 p.m.34 views

Downloads Resources over HTTP

Overview Affected versions of dalek-browser-ie-canary insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in cod...

9.3CVSS5.2AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 3:2 p.m.45 views

Downloads Resources over HTTP

Overview Affected versions of air-sdk insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on t...

9.3CVSS5.3AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 3:0 p.m.46 views

Downloads Resources over HTTP

Overview Affected versions of dalek-browser-chrome insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code...

9.3CVSS5.1AI score0.02104EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 12:44 a.m.52 views

Downloads Resources over HTTP

Overview Affected versions of cobalt-cli insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution o...

4.3CVSS6.2AI score0.00531EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 12:29 a.m.37 views

Downloads Resources over HTTP

Overview Affected versions of webdrvr insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on t...

9.3CVSS5.6AI score0.01682EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 12:27 a.m.32 views

Downloads Resources over HTTP

Overview Affected versions of arrayfire-js insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution...

8.5CVSS6.2AI score0.01354EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 12:23 a.m.41 views

Downloads Resources over HTTP

Overview Affected versions of cue-sdk-node insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution...

9.3CVSS6.2AI score0.01752EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 12:9 a.m.43 views

Downloads Resources over HTTP

Overview Affected versions of sauce-connect insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code executio...

9.3CVSS5.7AI score0.01682EPSS
Exploits0Affected Software1
Rows per page
Query Builder