exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2014-6394

больше 10 лет назад

visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using "public-restricted" under a "public" directory.

CVSS2: 7.5

EPSS: Низкий

CVE-2014-6394

почти 11 лет назад

visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using "public-restricted" under a "public" directory.

CVSS2: 2.6

EPSS: Низкий

CVE-2014-6394

больше 10 лет назад

visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using "public-restricted" under a "public" directory.

CVSS2: 7.5

EPSS: Низкий

CVE-2014-6394

больше 10 лет назад

visionmedia send before 0.8.4 for Node.js uses a partial comparison fo ...

CVSS2: 7.5

EPSS: Низкий

GHSA-xwg4-93c6-3h42

больше 7 лет назад

Directory Traversal in send

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2014-6394 visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using "public-restricted" under a "public" directory.	CVSS2: 7.5	5% Низкий	больше 10 лет назад
CVE-2014-6394 visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using "public-restricted" under a "public" directory.	CVSS2: 2.6	5% Низкий	почти 11 лет назад
CVE-2014-6394 visionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using "public-restricted" under a "public" directory.	CVSS2: 7.5	5% Низкий	больше 10 лет назад
CVE-2014-6394 visionmedia send before 0.8.4 for Node.js uses a partial comparison fo ...	CVSS2: 7.5	5% Низкий	больше 10 лет назад
GHSA-xwg4-93c6-3h42 Directory Traversal in send		5% Низкий	больше 7 лет назад

Уязвимостей на страницу