Количество 2
Количество 2
CVE-2021-23664
около 4 лет назад
The package @isomorphic-git/cors-proxy before 2.7.1 are vulnerable to Server-side Request Forgery (SSRF) due to missing sanitization and validation of the redirection action in middleware.js.
CVSS3: 8.6
EPSS: Низкий
GHSA-v82v-rq72-phq9
около 4 лет назад
Server side request forgery in @isomorphic-git/cors-proxy
CVSS3: 8.6
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-23664 The package @isomorphic-git/cors-proxy before 2.7.1 are vulnerable to Server-side Request Forgery (SSRF) due to missing sanitization and validation of the redirection action in middleware.js. | CVSS3: 8.6 | 0% Низкий | около 4 лет назад |
| GHSA-v82v-rq72-phq9 Server side request forgery in @isomorphic-git/cors-proxy | CVSS3: 8.6 | 0% Низкий | около 4 лет назад |
Уязвимостей на страницу
20