exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2024-43796

больше 1 года назад

Express.js minimalist web framework for node. In express < 4.20.0, passing untrusted user input - even after sanitizing it - to response.redirect() may execute untrusted code. This issue is patched in express 4.20.0.

CVSS3: 5

EPSS: Низкий

CVE-2024-43796

больше 1 года назад

Express.js minimalist web framework for node. In express < 4.20.0, passing untrusted user input - even after sanitizing it - to response.redirect() may execute untrusted code. This issue is patched in express 4.20.0.

CVSS3: 5

EPSS: Низкий

CVE-2024-43796

больше 1 года назад

Express.js minimalist web framework for node. In express < 4.20.0, passing untrusted user input - even after sanitizing it - to response.redirect() may execute untrusted code. This issue is patched in express 4.20.0.

CVSS3: 5

EPSS: Низкий

CVE-2024-43796

больше 1 года назад

express vulnerable to XSS via response.redirect()

CVSS3: 4.7

EPSS: Низкий

CVE-2024-43796

больше 1 года назад

Express.js minimalist web framework for node. In express < 4.20.0, pas ...

CVSS3: 5

EPSS: Низкий

GHSA-qw6h-vgh9-j6wx

больше 1 года назад

express vulnerable to XSS via response.redirect()

CVSS3: 5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-43796 Express.js minimalist web framework for node. In express < 4.20.0, passing untrusted user input - even after sanitizing it - to response.redirect() may execute untrusted code. This issue is patched in express 4.20.0.	CVSS3: 5	0% Низкий	больше 1 года назад
CVE-2024-43796 Express.js minimalist web framework for node. In express < 4.20.0, passing untrusted user input - even after sanitizing it - to response.redirect() may execute untrusted code. This issue is patched in express 4.20.0.	CVSS3: 5	0% Низкий	больше 1 года назад
CVE-2024-43796 Express.js minimalist web framework for node. In express < 4.20.0, passing untrusted user input - even after sanitizing it - to response.redirect() may execute untrusted code. This issue is patched in express 4.20.0.	CVSS3: 5	0% Низкий	больше 1 года назад
CVE-2024-43796 express vulnerable to XSS via response.redirect()	CVSS3: 4.7	0% Низкий	больше 1 года назад
CVE-2024-43796 Express.js minimalist web framework for node. In express < 4.20.0, pas ...	CVSS3: 5	0% Низкий	больше 1 года назад
GHSA-qw6h-vgh9-j6wx express vulnerable to XSS via response.redirect()	CVSS3: 5	0% Низкий	больше 1 года назад

Уязвимостей на страницу