Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Send ProjectSend

2 matches found

CVE
CVEadded 2024/09/10 2:45 p.m.342 views

CVE-2024-43799

CVE-2024-43799 is a vulnerability in the Send library used to stream files as HTTP responses. The issue occurs because untrusted input is passed to SendStream.redirect(), which can cause execution of untrusted code. The description notes this leads to code execution and that the fix is in send 0....

5CVSS5.7AI score0.00175EPSS
CVE
CVEadded 2017/01/23 9:0 p.m.66 views

CVE-2015-8859

CVE-2015-8859 concerns the Node.js send package prior to 0.11.1, where an information leakage/root path disclosure vulnerability exists via unspecified vectors. Connected sources (GHSA-... and OSV entries) confirm this vulnerability, with remediation advised to upgrade to 0.11.1 or later. Affecte...

5.3CVSS5.1AI score0.00603EPSS