Количество 14
Количество 14
GHSA-mfjx-w835-f3w2
Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server.
CVE-2018-12116
Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server.
CVE-2018-12116
Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server.
CVE-2018-12116
Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server.
CVE-2018-12116
Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request then data can be provided which will trigger a second unexpected and user-defined HTTP request to made to the same server.
CVE-2018-12116
Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request ...
BDU:2019-02939
Уязвимость парсера URL-адресов библиотеки Node.js, позволяющая нарушителю получить несанкционированный доступ к защищаемым данным
openSUSE-SU-2019:0089-1
Security update for nodejs8
SUSE-SU-2019:0118-1
Security update for nodejs8
openSUSE-SU-2019:0234-1
Security update for nodejs6
openSUSE-SU-2019:0088-1
Security update for nodejs4
SUSE-SU-2019:0395-1
Security update for nodejs6
SUSE-SU-2019:0117-1
Security update for nodejs4
SUSE-SU-2019:14246-1
Security update for Mozilla Firefox
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-mfjx-w835-f3w2 Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server. | CVSS3: 7.5 | 1% Низкий | больше 3 лет назад |
 | CVE-2018-12116 Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server. | CVSS3: 7.5 | 1% Низкий | почти 7 лет назад |
 | CVE-2018-12116 Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server. | CVSS3: 7.2 | 1% Низкий | почти 7 лет назад |
 | CVE-2018-12116 Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server. | CVSS3: 7.5 | 1% Низкий | почти 7 лет назад |
 | CVE-2018-12116 Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the `path` option of an HTTP request then data can be provided which will trigger a second unexpected and user-defined HTTP request to made to the same server. | CVSS3: 7.5 | 1% Низкий | больше 4 лет назад |
| CVE-2018-12116 Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request ... | CVSS3: 7.5 | 1% Низкий | почти 7 лет назад |
 | BDU:2019-02939 Уязвимость парсера URL-адресов библиотеки Node.js, позволяющая нарушителю получить несанкционированный доступ к защищаемым данным | CVSS3: 7.5 | 1% Низкий | почти 7 лет назад |
 | openSUSE-SU-2019:0089-1 Security update for nodejs8 | больше 6 лет назад | ||
| SUSE-SU-2019:0118-1 Security update for nodejs8 | почти 7 лет назад | ||
| openSUSE-SU-2019:0234-1 Security update for nodejs6 | больше 6 лет назад | ||
| openSUSE-SU-2019:0088-1 Security update for nodejs4 | почти 7 лет назад | ||
| SUSE-SU-2019:0395-1 Security update for nodejs6 | больше 6 лет назад | ||
| SUSE-SU-2019:0117-1 Security update for nodejs4 | почти 7 лет назад | ||
| SUSE-SU-2019:14246-1 Security update for Mozilla Firefox | почти 6 лет назад |
Уязвимостей на страницу