Lucene search

Connect Security Vulnerabilities

cve

CVE-2013-4691

Sencha Labs Connect has XSS with connect.methodOverride()

6.1CVSS

6AI Score

0.001EPSS

2019-12-27 04:15 PM

cve

CVE-2013-7370

node-connect before 2.8.1 has XSS in the Sencha Labs Connect middleware

6.1CVSS

5.7AI Score

0.004EPSS

2019-12-11 02:15 PM

cve

CVE-2013-7371

node-connects before 2.8.2 has cross site scripting in Sencha Labs Connect middleware (vulnerability due to incomplete fix for CVE-2013-7370)

6.1CVSS

6AI Score

0.004EPSS

2019-12-11 03:15 PM

cve

CVE-2018-3717

connect node module before 2.14.0 suffers from a Cross-Site Scripting (XSS) vulnerability due to a lack of validation of file in directory.js middleware.

5.4CVSS

5.1AI Score

0.001EPSS

2018-06-07 02:29 AM