Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2019-0680

Malware in sbrugna...

7.5CVSS7.5AI score0.01289EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2020/09/03 8:28 p.m.22 views

Unintended Require in larvitbase-www

All versions of larvitbase-www are vulnerable to an Unintended Require. The package exposes an API endpoint and passes a GET parameter unsanitized to an require call. This allows attackers to execute any .js file in the same folder as the server is running. Recommendation No fix is currently...

5.8AI score
Exploits0References3Affected Software1
OSV
OSV
added 2020/09/03 8:28 p.m.10 views

GHSA-88H9-FC6V-JCW7 Unintended Require in larvitbase-www

All versions of larvitbase-www are vulnerable to an Unintended Require. The package exposes an API endpoint and passes a GET parameter unsanitized to an require call. This allows attackers to execute any .js file in the same folder as the server is running. Recommendation No fix is currently...

7.3AI score
Exploits0References2
OSV
OSV
added 2020/02/14 10:15 p.m.1 views

CVE-2020-8128

An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code...

9.8CVSS6AI score
Exploits0References1
NVD
NVD
added 2020/02/14 10:15 p.m.20 views

CVE-2020-8129

An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...

9.8CVSS9.7AI score0.02943EPSS
Exploits1References1
Prion
Prion
added 2020/02/14 10:15 p.m.18 views

Code injection

An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...

7.5CVSS9.6AI score0.02943EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/02/14 9:28 p.m.22 views

CVE-2020-8129

An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...

9.8AI score0.02943EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2019/09/11 11:3 p.m.29 views

Unintended Require in larvitbase-api

Versions of larvitbase-api prior to 0.5.4 are vulnerable to an Unintended Require. The package exposes an API endpoint and passes a GET parameter unsanitized to an require call. This allows attackers to execute any .js file in the same folder as the server is running. Recommendation Upgrade to...

7.5CVSS5.8AI score0.01289EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2019/09/11 11:3 p.m.17 views

GHSA-XF27-JQWV-GF3R Unintended Require in larvitbase-api

Versions of larvitbase-api prior to 0.5.4 are vulnerable to an Unintended Require. The package exposes an API endpoint and passes a GET parameter unsanitized to an require call. This allows attackers to execute any .js file in the same folder as the server is running. Recommendation Upgrade to...

7.5CVSS7.6AI score0.01289EPSS
Exploits1References3
NVD
NVD
added 2019/09/03 8:15 p.m.36 views

CVE-2019-5479

An unintended require vulnerability in v0.5.5 larvitbase-api may allow an attacker to load arbitrary non-production code JavaScript file...

7.5CVSS7.5AI score0.01289EPSS
Exploits1References1
OSV
OSV
added 2019/09/03 8:15 p.m.2 views

CVE-2019-5479

An unintended require vulnerability in v0.5.5 larvitbase-api may allow an attacker to load arbitrary non-production code JavaScript file...

7.5CVSS7.3AI score0.01289EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/09/03 7:15 p.m.39 views

CVE-2019-5479

An unintended require vulnerability in v0.5.5 larvitbase-api may allow an attacker to load arbitrary non-production code JavaScript file...

7.5AI score0.01289EPSS
Exploits1References1
Node.js
Node.js
added 2019/08/22 7:49 p.m.16 views

Unintended Require

Overview Versions of larvitbase-api prior to 0.5.4 are vulnerable to an Unintended Require. The package exposes an API endpoint and passes a GET parameter unsanitized to an require call. This allows attackers to execute any .js file in the same folder as the server is running. Recommendation...

7.1AI score
Exploits0Affected Software1
Rows per page
Query Builder