CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-13309

Malware in sbrugna...

7.5CVSS7.5AI score0.00493EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 6:9 p.m.•5 views

CVE-2021-25864

node-red-contrib-huemagic 3.0.0 is affected by hue/assets/..%2F Directory Traversal.in the res.sendFile API, used in file hue-magic.js, to fetch an arbitrary file...

7.5CVSS6.8AI score0.56956EPSS

Exploits1References1

NVD•added 2023/08/11 2:15 p.m.•10 views

CVE-2021-26504

Directory Traversal vulnerability in Foddy node-red-contrib-huemagic version 3.0.0, allows remote attackers to gain sensitive information via crafted request in res.sendFile API in hue-magic.js...

7.5CVSS7.6AI score0.00493EPSS

Exploits1References1

Prion•added 2023/08/11 2:15 p.m.•13 views

Directory traversal

Directory Traversal vulnerability in Foddy node-red-contrib-huemagic version 3.0.0, allows remote attackers to gain sensitive information via crafted request in res.sendFile API in hue-magic.js...

5CVSS7.5AI score0.00493EPSS

Exploits1References1Affected Software1

Veracode•added 2021/01/27 3:51 a.m.•6 views

Directory Traversal

node-red-contrib-huemagic is vulnerable to directory traversal. The vulnerability exists as the res.sendFile parameter in the API in hue-magic.js is not sanitized, allowing an attacker to fetch arbitrary files on the server by appending ../ to the URL of the target host...

7.5CVSS6.7AI score0.56956EPSS

Exploits1References2Affected Software1

Cvelist•added 2021/01/26 7:9 a.m.•16 views

CVE-2021-25864

node-red-contrib-huemagic 3.0.0 is affected by hue/assets/..%2F Directory Traversal.in the res.sendFile API, used in file hue-magic.js, to fetch an arbitrary file...

7.9AI score0.56956EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by