Joyent Node.js HTTP Response Splitting Attack Vulnerability

Joyent Node.js is a suite of web application platforms built on top of Google's V8 JavaScript engine. Joyent Node.js suffers from an HTTP response splitting attack, which allows remote attackers to exploit the vulnerability to affect or tamper with the serving, caching, or parsing of web content...

Fedora Update for nodejs FEDORA-2016-8925

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for nodejs FEDORA-2016-3102

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for nodejs-is-my-json-valid FEDORA-2016-3441

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 22 Update: nodejs-is-my-json-valid-2.12.4-1.fc22

A JSONSchema validator that uses code generation to be extremely fast...

Fedora Update for nodejs-is-my-json-valid FEDORA-2016-25

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 23 Update: nodejs-is-my-json-valid-2.12.4-1.fc23

A JSONSchema validator that uses code generation to be extremely fast...

SOL33209124 - OpenSSL vulnerability CVE-2015-3197

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

Fedora Update for nodejs-ws FEDORA-2016-3509

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 22 Update: nodejs-ws-1.0.1-1.fc22

Simple to use, blazing fast and thoroughly tested web socket client, server and console for nodejs, up-to-date against RFC-6455...

[SECURITY] Fedora 23 Update: nodejs-ws-1.0.1-1.fc23

Simple to use, blazing fast and thoroughly tested web socket client, server and console for nodejs, up-to-date against RFC-6455...

Fedora Update for nodejs-handlebars FEDORA-2015-8

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 23 Update: nodejs-handlebars-4.0.5-1.fc23

Handlebars.js is an extension to the Mustache templating language created by Chris Wanstrath. Handlebars.js and Mustache are both logicless templating languages that keep the view and the code separated like we all know they s hould be...

openSUSE Security Update : nodejs (openSUSE-2015-680)

nodejs was updated to version 4.2.1 to fix one security issue. This security issue was fixed : - CVE-2015-7384: HTTP Denial of Service Vulnerability bsc948602. Various other issues were fixed, please see the changelog. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

CSRFT - Cross Site Request Forgeries (Exploitation) Toolkit

This project has been developed to exploit CSRF Web vulnerabilities and provide you a quick and easy exploitation toolkit. In few words, this is a simple HTTP Server in NodeJS that will communicate with the clients victims and send them payload that will be executed using JavaScript. This has bee...

Best Self Hosted Alternatives

Best Self Hosted Alternatives Analytics AWStats Generates web, streaming, ftp or mail server statistics graphically. Source Code GPLv3 Perl Countly Real time mobile & web analytics, crash reporting and push notifications platform. Source Code AGPLv3 Javascript Druid A distributed, column-oriented...

[ MDVSA-2015:228 ] nodejs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:228 http://www.mandriva.com/en/support/security/ Package : nodejs Date : May 6, 2015 Affected: Business Server 2.0 Problem Description: Updated nodejs package fixes security vulnerability: It was found that...

MGASA-2015-0186 Updated nodejs packages fix security vulnerabilities

Updated nodejs package fixes security vulnerability: It was found that libuv does not call setgoups before calling setuid/setgid. This may potentially allow an attacker to gain elevated privileges CVE-2015-0278. The libuv library is bundled with nodejs, and a fixed version of libuv is included wi...

Updated nodejs packages fix security vulnerabilities

Updated nodejs package fixes security vulnerability: It was found that libuv does not call setgoups before calling setuid/setgid. This may potentially allow an attacker to gain elevated privileges CVE-2015-0278. The libuv library is bundled with nodejs, and a fixed version of libuv is included wi...

Mandriva Linux Security Advisory : nodejs (MDVSA-2015:142)

Updated nodejs package fixes security vulnerabilities : A memory corruption vulnerability, which results in a denial-of-service, was identified in the versions of V8 that ship with Node.js 0.8 and 0.10. In certain circumstances, a particularly deep recursive workload that may trigger a GC and...