Количество 2
Количество 2
CVE-2022-25876
больше 3 лет назад
The package link-preview-js before 2.1.16 are vulnerable to Server-side Request Forgery (SSRF) which allows attackers to send arbitrary requests to the local network and read the response. This is due to flawed DNS rebinding protection.
CVSS3: 6.2
EPSS: Низкий
GHSA-h9cw-7g8j-h66h
больше 3 лет назад
Server-Side Request Forgery in link-preview-js
CVSS3: 5.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-25876 The package link-preview-js before 2.1.16 are vulnerable to Server-side Request Forgery (SSRF) which allows attackers to send arbitrary requests to the local network and read the response. This is due to flawed DNS rebinding protection. | CVSS3: 6.2 | 0% Низкий | больше 3 лет назад |
| GHSA-h9cw-7g8j-h66h Server-Side Request Forgery in link-preview-js | CVSS3: 5.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20