exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2024-43800

больше 1 года назад

serve-static serves static files. serve-static passes untrusted user input - even after sanitizing it - to redirect() may execute untrusted code. This issue is patched in serve-static 1.16.0.

CVSS3: 5

EPSS: Низкий

CVE-2024-43800

больше 1 года назад

serve-static serves static files. serve-static passes untrusted user input - even after sanitizing it - to redirect() may execute untrusted code. This issue is patched in serve-static 1.16.0.

CVSS3: 5

EPSS: Низкий

CVE-2024-43800

больше 1 года назад

serve-static serves static files. serve-static passes untrusted user input - even after sanitizing it - to redirect() may execute untrusted code. This issue is patched in serve-static 1.16.0.

CVSS3: 5

EPSS: Низкий

CVE-2024-43800

больше 1 года назад

serve-static affected by template injection that can lead to XSS

CVSS3: 4.7

EPSS: Низкий

CVE-2024-43800

больше 1 года назад

serve-static serves static files. serve-static passes untrusted user i ...

CVSS3: 5

EPSS: Низкий

GHSA-cm22-4g7w-348p

больше 1 года назад

serve-static vulnerable to template injection that can lead to XSS

CVSS3: 5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-43800 serve-static serves static files. serve-static passes untrusted user input - even after sanitizing it - to redirect() may execute untrusted code. This issue is patched in serve-static 1.16.0.	CVSS3: 5	1% Низкий	больше 1 года назад
CVE-2024-43800 serve-static serves static files. serve-static passes untrusted user input - even after sanitizing it - to redirect() may execute untrusted code. This issue is patched in serve-static 1.16.0.	CVSS3: 5	1% Низкий	больше 1 года назад
CVE-2024-43800 serve-static serves static files. serve-static passes untrusted user input - even after sanitizing it - to redirect() may execute untrusted code. This issue is patched in serve-static 1.16.0.	CVSS3: 5	1% Низкий	больше 1 года назад
CVE-2024-43800 serve-static affected by template injection that can lead to XSS	CVSS3: 4.7	1% Низкий	больше 1 года назад
CVE-2024-43800 serve-static serves static files. serve-static passes untrusted user i ...	CVSS3: 5	1% Низкий	больше 1 года назад
GHSA-cm22-4g7w-348p serve-static vulnerable to template injection that can lead to XSS	CVSS3: 5	1% Низкий	больше 1 года назад

Уязвимостей на страницу