2 matches found
GHSA-M6FV-JMCG-4JFG send vulnerable to template injection that can lead to XSS
Impact passing untrusted user input - even after sanitizing it - to SendStream.redirect may execute untrusted code Patches this issue is patched in send 0.19.0 Workarounds users are encouraged to upgrade to the patched version of express, but otherwise can workaround this issue by making sure any...
Denicomp REXECD/RSHD Denial of Service Vulnerability
Strumpf Noir Society Advisories ! Public release ! -- -= Denicomp REXECD/RSHD Denial of Service Vulnerability =- Release date: Thursday, May 3, 2001 Introduction: Denicomp's REXECD and RSHD products are ports of their counterparts on Unix-based systems, allowing the use of the rcp, rsh and rexec...