exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

GHSA-p8p7-x288-28g6

почти 3 года назад

Server-Side Request Forgery in Request

CVSS3: 6.1

EPSS: Низкий

CVE-2023-28155

почти 3 года назад

The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVSS3: 6.1

EPSS: Низкий

CVE-2023-28155

почти 3 года назад

The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVSS3: 6.1

EPSS: Низкий

CVE-2023-28155

почти 3 года назад

The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVSS3: 6.1

EPSS: Низкий

CVE-2023-28155

почти 3 года назад

The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CVSS3: 6.1

EPSS: Низкий

CVE-2023-28155

почти 3 года назад

The Request package through 2.88.1 for Node.js allows a bypass of SSRF ...

CVSS3: 6.1

EPSS: Низкий

BDU:2023-05169

почти 3 года назад

Уязвимость пакета Request программной платформы Node.js, позволяющая нарушителю осуществить SSRF-атаку

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-p8p7-x288-28g6 Server-Side Request Forgery in Request	CVSS3: 6.1	1% Низкий	почти 3 года назад
CVE-2023-28155 The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.	CVSS3: 6.1	1% Низкий	почти 3 года назад
CVE-2023-28155 The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.	CVSS3: 6.1	1% Низкий	почти 3 года назад
CVE-2023-28155 The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.	CVSS3: 6.1	1% Низкий	почти 3 года назад
CVE-2023-28155 The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.	CVSS3: 6.1	1% Низкий	почти 3 года назад
CVE-2023-28155 The Request package through 2.88.1 for Node.js allows a bypass of SSRF ...	CVSS3: 6.1	1% Низкий	почти 3 года назад
BDU:2023-05169 Уязвимость пакета Request программной платформы Node.js, позволяющая нарушителю осуществить SSRF-атаку	CVSS3: 6.1	1% Низкий	почти 3 года назад

Уязвимостей на страницу