Количество 4
Количество 4
CVE-2025-11149
This affects all versions of the package node-static; all versions of the package @nubosoftware/node-static. The package fails to catch an exception when user input includes null bytes. This allows attackers to access http://host/%00 and crash the server.
CVE-2025-11149
This affects all versions of the package node-static; all versions of the package @nubosoftware/node-static. The package fails to catch an exception when user input includes null bytes. This allows attackers to access http://host/%00 and crash the server.
CVE-2025-11149
This affects all versions of the package node-static; all versions of ...
GHSA-27w5-gj5q-82fv
@nubosoftware/node-static failure to catch exception can result in server crash
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-11149 This affects all versions of the package node-static; all versions of the package @nubosoftware/node-static. The package fails to catch an exception when user input includes null bytes. This allows attackers to access http://host/%00 and crash the server. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
 | CVE-2025-11149 This affects all versions of the package node-static; all versions of the package @nubosoftware/node-static. The package fails to catch an exception when user input includes null bytes. This allows attackers to access http://host/%00 and crash the server. | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| CVE-2025-11149 This affects all versions of the package node-static; all versions of ... | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| GHSA-27w5-gj5q-82fv @nubosoftware/node-static failure to catch exception can result in server crash | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
Уязвимостей на страницу