27 matches found
EUVD-2020-0583
Malware in sbrugna...
EUVD-2013-4544
Malware in sbrugna...
EUVD-2022-2867
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2013-7370
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - node-connect before 2.8.1 has XSS in the Sencha Labs Connect middleware CVE-2013-7370 Note that Nessus relies on the presence of the package as reported by the...
CVE-2013-4691
Sencha Labs Connect has XSS with connect.methodOverride...
Node Connect Reflected Cross-Site Scripting in Sencha Labs Connect middleware
node-connect before 2.8.2 has cross site scripting in Sencha Labs Connect middleware vulnerability due to incomplete fix for CVE-2013-7370 Overview Connect is a stack of middleware that is executed in order in each request. The "methodOverride" middleware allows the http post to override the meth...
GHSA-6W62-83G6-RFHJ Node Connect Reflected Cross-Site Scripting in Sencha Labs Connect middleware
node-connect before 2.8.2 has cross site scripting in Sencha Labs Connect middleware vulnerability due to incomplete fix for CVE-2013-7370 Overview Connect is a stack of middleware that is executed in order in each request. The "methodOverride" middleware allows the http post to override the meth...
Sencha Labs Connect Cross-Site Scripting Vulnerability
Sencha Labs Connect is an extensible HTTP server framework for Node.js. A cross-site scripting vulnerability exists in the 'connect.methodOverride' function in Sencha Labs Connect. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An attacker cou...
CVE-2013-4691
Sencha Labs Connect has XSS with connect.methodOverride...
Xxe
Sencha Labs Connect has XSS with connect.methodOverride...
CVE-2013-4691
Sencha Labs Connect has XSS with connect.methodOverride...
CVE-2013-4691
The CVE-2013-4691 entry documents an XSS vulnerability in Sencha Labs Connect (Node.js HTTP server framework) via the connect.methodOverride() function. The root cause is a lack of proper validation of client-supplied data by the web application, enabling potential execution of client-side code. ...
CVE-2013-7371
node-connects before 2.8.2 has cross site scripting in Sencha Labs Connect middleware vulnerability due to incomplete fix for CVE-2013-7370...
UBUNTU-CVE-2013-7371
node-connects before 2.8.2 has cross site scripting in Sencha Labs Connect middleware vulnerability due to incomplete fix for CVE-2013-7370...
CVE-2013-7371
node-connects before 2.8.2 has cross site scripting in Sencha Labs Connect middleware vulnerability due to incomplete fix for CVE-2013-7370...
Cross site scripting
node-connects before 2.8.2 has cross site scripting in Sencha Labs Connect middleware vulnerability due to incomplete fix for CVE-2013-7370...
CVE-2013-7370
node-connect before 2.8.1 has XSS in the Sencha Labs Connect middleware...
DEBIAN-CVE-2013-7370
node-connect before 2.8.1 has XSS in the Sencha Labs Connect middleware...
CVE-2013-7370
node-connect before 2.8.1 has XSS in the Sencha Labs Connect middleware...
Code injection
node-connect before 2.8.1 has XSS in the Sencha Labs Connect middleware...