| @babel/traverse |
CVE-2023-45133 |
严重 |
7.17.3 |
7.23.2, 8.0.0-alpha.4 |
babel: arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-10-12 17:15 修改: 2023-10-24 16:52
|
| @xmldom/xmldom |
CVE-2022-39353 |
严重 |
0.7.5 |
0.7.7, 0.8.4, 0.9.0-beta.4 |
xmldom: Allows multiple root elements in a DOM tree
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39353
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-02 17:15 修改: 2023-03-01 14:03
|
| @xmldom/xmldom |
CVE-2022-39353 |
严重 |
0.7.5 |
0.7.7, 0.8.4, 0.9.0-beta.4 |
xmldom: Allows multiple root elements in a DOM tree
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39353
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-02 17:15 修改: 2023-03-01 14:03
|
| @xmldom/xmldom |
CVE-2022-39353 |
严重 |
0.8.2 |
0.7.7, 0.8.4, 0.9.0-beta.4 |
xmldom: Allows multiple root elements in a DOM tree
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39353
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-02 17:15 修改: 2023-03-01 14:03
|
| minimist |
CVE-2021-44906 |
严重 |
1.2.5 |
1.2.6, 0.2.4 |
minimist: prototype pollution
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
|
| minimist |
CVE-2021-44906 |
严重 |
1.2.5 |
1.2.6, 0.2.4 |
minimist: prototype pollution
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
|
| underscore |
CVE-2021-23358 |
严重 |
1.4.4 |
1.12.1 |
nodejs-underscore: Arbitrary code execution via the template function
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23358
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2021-03-29 14:15 修改: 2023-11-07 03:30
|
| underscore |
CVE-2021-23358 |
严重 |
1.4.4 |
1.12.1 |
nodejs-underscore: Arbitrary code execution via the template function
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23358
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2021-03-29 14:15 修改: 2023-11-07 03:30
|
| vm2 |
CVE-2023-30547 |
严重 |
3.9.16 |
3.9.17 |
vm2: Sandbox Escape when exception sanitization
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30547
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-04-17 22:15 修改: 2023-04-28 01:13
|
| vm2 |
CVE-2023-32314 |
严重 |
3.9.16 |
3.9.18 |
vm2: Sandbox Escape
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32314
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-05-15 20:15 修改: 2023-05-24 20:50
|
| vm2 |
CVE-2023-37466 |
严重 |
3.9.16 |
|
vm2: Promise handler sanitization can be bypassed allowing attackers to escape the sandbox and run arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37466
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-07-14 00:15 修改: 2024-02-01 14:05
|
| vm2 |
CVE-2023-37903 |
严重 |
3.9.16 |
|
vm2: custom inspect function allows attackers to escape the sandbox and run arbitrary code
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37903
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-07-21 20:15 修改: 2024-02-01 13:46
|
| braces |
CVE-2024-4068 |
高危 |
3.0.2 |
3.0.3 |
braces: fails to limit the number of characters it can handle
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-05-14 15:42 修改: 2024-07-03 02:07
|
| browserify-sign |
CVE-2023-46234 |
高危 |
4.2.1 |
4.2.2 |
browserify-sign: upper bound check issue in dsaVerify leads to a signature forgery attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46234
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-10-26 15:15 修改: 2024-02-28 03:15
|
| d3-color |
GHSA-36jr-mh4h-2g58 |
高危 |
2.0.0 |
3.1.0 |
d3-color vulnerable to ReDoS
漏洞详情: https://github.com/advisories/GHSA-36jr-mh4h-2g58
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| debug |
CVE-2017-20165 |
高危 |
0.8.1 |
3.1.0, 2.6.9 |
A vulnerability classified as problematic has been found in debug-js d ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
|
| debug |
CVE-2017-20165 |
高危 |
2.2.0 |
3.1.0, 2.6.9 |
A vulnerability classified as problematic has been found in debug-js d ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
|
| decode-uri-component |
CVE-2022-38900 |
高危 |
0.2.0 |
0.2.1 |
decode-uri-component: improper input validation resulting in DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38900
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-28 13:15 修改: 2023-11-07 03:50
|
| decode-uri-component |
CVE-2022-38900 |
高危 |
0.2.0 |
0.2.1 |
decode-uri-component: improper input validation resulting in DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38900
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2022-11-28 13:15 修改: 2023-11-07 03:50
|
| dompurify |
CVE-2024-45801 |
高危 |
2.3.8 |
2.5.4, 3.1.3 |
dompurify: XSS vulnerability via prototype pollution
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45801
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-16 19:16 修改: 2024-09-20 12:31
|
| dompurify |
CVE-2024-47875 |
高危 |
2.3.8 |
2.5.0, 3.1.3 |
dompurify: nesting-based mutation XSS vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47875
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-11 15:15 修改: 2024-10-15 12:58
|
| file-type |
CVE-2022-36313 |
高危 |
16.5.3 |
16.5.4, 17.1.3 |
file-type: a malformed MKV file could cause the file type detector to get caught in an infinite loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36313
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-07-21 16:15 修改: 2022-10-27 13:25
|
| forwarded |
CVE-2017-16118 |
高危 |
0.1.0 |
0.1.2 |
nodejs-forwarded: regular expression denial of service when parsing crafted user input
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16118
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
|
| fresh |
CVE-2017-16119 |
高危 |
0.2.0 |
0.5.2 |
nodejs-fresh: Regular expression denial of service when parsing crafted user input
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16119
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
|
| fresh |
CVE-2017-16119 |
高危 |
0.3.0 |
0.5.2 |
nodejs-fresh: Regular expression denial of service when parsing crafted user input
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16119
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
|
| hoek |
CVE-2020-36604 |
高危 |
6.1.3 |
|
hapi/hoek: Prototype Pollution in @hapi/hoek
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36604
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-09-23 06:15 修改: 2023-11-07 03:22
|
| http-cache-semantics |
CVE-2022-25881 |
高危 |
3.8.1 |
4.1.1 |
http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2023-01-31 05:15 修改: 2023-11-07 03:44
|
| ip |
CVE-2024-29415 |
高危 |
1.1.5 |
|
node-ip: Incomplete fix for CVE-2023-42282
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-05-27 20:15 修改: 2024-08-16 14:35
|
| ip |
CVE-2024-29415 |
高危 |
1.1.5 |
|
node-ip: Incomplete fix for CVE-2023-42282
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2024-05-27 20:15 修改: 2024-08-16 14:35
|
| ip |
CVE-2024-29415 |
高危 |
1.1.8 |
|
node-ip: Incomplete fix for CVE-2023-42282
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-05-27 20:15 修改: 2024-08-16 14:35
|
| ip |
CVE-2024-29415 |
高危 |
2.0.0 |
|
node-ip: Incomplete fix for CVE-2023-42282
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2024-05-27 20:15 修改: 2024-08-16 14:35
|
| ip |
CVE-2024-29415 |
高危 |
2.0.0 |
|
node-ip: Incomplete fix for CVE-2023-42282
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-05-27 20:15 修改: 2024-08-16 14:35
|
| json5 |
CVE-2022-46175 |
高危 |
2.1.1 |
2.2.2, 1.0.2 |
json5: Prototype Pollution in JSON5 via Parse Method
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46175
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-12-24 04:15 修改: 2023-11-26 01:15
|
| json5 |
CVE-2022-46175 |
高危 |
2.2.0 |
2.2.2, 1.0.2 |
json5: Prototype Pollution in JSON5 via Parse Method
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46175
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-12-24 04:15 修改: 2023-11-26 01:15
|
| jsonwebtoken |
CVE-2022-23539 |
高危 |
8.5.1 |
9.0.0 |
jsonwebtoken: Unrestricted key type could lead to legacy keys usagen
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23539
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-12-23 00:15 修改: 2024-06-21 19:15
|
| jsrsasign |
CVE-2024-21484 |
高危 |
10.5.25 |
11.0.0 |
jsrsasign: vulnerable to Observable Discrepancy via the RSA PKCS1.5 or RSAOAEP decryption process
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21484
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-01-22 05:15 修改: 2024-03-06 14:15
|
| matrix-js-sdk |
CVE-2022-36059 |
高危 |
12.5.0 |
19.4.0 |
Mozilla: Matrix SDK bundled with Thunderbird vulnerable to denial-of-service attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36059
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-03-28 21:15 修改: 2023-04-05 01:17
|
| matrix-js-sdk |
CVE-2022-39249 |
高危 |
12.5.0 |
19.7.0 |
Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack by malicious server administrators
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39249
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-09-28 20:15 修改: 2022-12-08 03:13
|
| matrix-js-sdk |
CVE-2022-39250 |
高危 |
12.5.0 |
19.7.0 |
Mozilla: Matrix SDK bundled with Thunderbird vulnerable to a device verification attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39250
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-09-29 13:15 修改: 2022-12-03 01:28
|
| matrix-js-sdk |
CVE-2022-39251 |
高危 |
12.5.0 |
19.7.0 |
Mozilla: Matrix SDK bundled with Thunderbird vulnerable to an impersonation attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39251
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-09-28 20:15 修改: 2022-12-03 01:34
|
| matrix-js-sdk |
CVE-2023-28427 |
高危 |
12.5.0 |
24.0.0 |
Mozilla: Matrix SDK bundled with Thunderbird vulnerable to denial-of-service attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28427
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-03-28 21:15 修改: 2023-05-30 06:16
|
| matrix-js-sdk |
CVE-2024-47080 |
高危 |
12.5.0 |
34.8.0 |
Matrix JavaScript SDK's key history sharing could share keys to malicious devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47080
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-15 15:15 修改: 2024-10-16 16:38
|
| mime |
CVE-2017-16138 |
高危 |
1.2.11 |
2.0.3, 1.4.1 |
nodejs-mime: Regular expression Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16138
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
|
| mime |
CVE-2017-16138 |
高危 |
1.3.4 |
2.0.3, 1.4.1 |
nodejs-mime: Regular expression Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16138
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
|
| minimatch |
CVE-2022-3517 |
高危 |
3.0.4 |
3.0.5 |
nodejs-minimatch: ReDoS via the braceExpand function
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
|
| minimatch |
CVE-2022-3517 |
高危 |
3.0.4 |
3.0.5 |
nodejs-minimatch: ReDoS via the braceExpand function
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
|
| ansi-regex |
CVE-2021-3807 |
高危 |
3.0.0 |
6.0.1, 5.0.1, 4.1.1, 3.0.1 |
nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
|
| ansi-regex |
CVE-2021-3807 |
高危 |
4.1.0 |
6.0.1, 5.0.1, 4.1.1, 3.0.1 |
nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
|
| nedb |
CVE-2021-23395 |
高危 |
1.8.0 |
|
Prototype Pollution in nedb
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23395
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2021-06-15 20:15 修改: 2023-08-08 14:22
|
| negotiator |
CVE-2016-10539 |
高危 |
0.3.0 |
0.6.1 |
negotiator is an HTTP content negotiator for Node.js and is used by ma ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10539
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
|
| negotiator |
NSWG-ECO-106 |
高危 |
0.3.0 |
>= 0.6.1 |
Regular Expression Denial of Service
漏洞详情:
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| negotiator |
CVE-2016-10539 |
高危 |
0.5.3 |
0.6.1 |
negotiator is an HTTP content negotiator for Node.js and is used by ma ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10539
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
|
| negotiator |
NSWG-ECO-106 |
高危 |
0.5.3 |
>= 0.6.1 |
Regular Expression Denial of Service
漏洞详情:
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| node-fetch |
CVE-2022-0235 |
高危 |
2.3.0 |
3.1.1, 2.6.7 |
node-fetch: exposure of sensitive information to an unauthorized actor
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0235
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-01-16 17:15 修改: 2023-02-03 19:16
|
| node-fetch |
CVE-2022-0235 |
高危 |
2.6.6 |
3.1.1, 2.6.7 |
node-fetch: exposure of sensitive information to an unauthorized actor
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0235
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-01-16 17:15 修改: 2023-02-03 19:16
|
| node-forge |
CVE-2020-7720 |
高危 |
0.7.6 |
0.10.0 |
nodejs-node-forge: prototype pollution via the util.setPath function
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7720
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2020-09-01 10:15 修改: 2022-12-02 19:53
|
| node-forge |
CVE-2022-24771 |
高危 |
0.7.6 |
1.3.0 |
node-forge: Signature verification leniency in checking `digestAlgorithm` structure can lead to signature forgery
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24771
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-03-18 14:15 修改: 2022-03-28 13:53
|
| node-forge |
CVE-2022-24772 |
高危 |
0.7.6 |
1.3.0 |
node-forge: Signature verification failing to check tailing garbage bytes can lead to signature forgery
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24772
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-03-18 14:15 修改: 2022-03-28 14:10
|
| nth-check |
CVE-2021-3803 |
高危 |
1.0.2 |
2.0.1 |
nodejs-nth-check: inefficient regular expression complexity
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3803
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2021-09-17 07:15 修改: 2023-07-10 18:52
|
| oauth2-server |
CVE-2017-18924 |
高危 |
2.4.1 |
|
Code Injection in oauth2-server
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18924
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2020-10-04 05:15 修改: 2024-08-05 22:15
|
| oauth2-server |
CVE-2020-26938 |
高危 |
2.4.1 |
|
oauth2-server through 3.1.1 vulnerable to Open Redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26938
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-08-29 21:15 修改: 2022-09-07 20:15
|
| path-to-regexp |
CVE-2024-45296 |
高危 |
0.1.7 |
1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0 |
path-to-regexp: Backtracking regular expressions cause ReDoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
|
| path-to-regexp |
CVE-2024-45296 |
高危 |
0.1.7 |
1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0 |
path-to-regexp: Backtracking regular expressions cause ReDoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
|
| path-to-regexp |
CVE-2024-45296 |
高危 |
1.2.1 |
1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0 |
path-to-regexp: Backtracking regular expressions cause ReDoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
|
| path-to-regexp |
CVE-2024-45296 |
高危 |
6.2.1 |
1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0 |
path-to-regexp: Backtracking regular expressions cause ReDoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
|
| pdfjs-dist |
CVE-2024-4367 |
高危 |
2.14.305 |
4.2.67 |
Mozilla: Arbitrary JavaScript execution in PDF.js
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4367
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-05-14 18:15 修改: 2024-06-10 17:16
|
| qs |
CVE-2014-10064 |
高危 |
0.6.6 |
1.0.0 |
The qs module before 1.0.0 does not have an option or default for spec ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2014-10064
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:09
|
| qs |
CVE-2014-7191 |
高危 |
0.6.6 |
>= 1.x |
nodejs-qs: Denial-of-Service Memory Exhaustion
漏洞详情: https://avd.aquasec.com/nvd/cve-2014-7191
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2014-10-19 01:55 修改: 2017-09-08 01:29
|
| qs |
CVE-2017-1000048 |
高危 |
0.6.6 |
6.0.4, 6.1.2, 6.2.3, 6.3.2 |
nodejs-qs: Prototype override protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
|
| qs |
CVE-2022-24999 |
高危 |
0.6.6 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| qs |
CVE-2017-1000048 |
高危 |
4.0.0 |
6.0.4, 6.1.2, 6.2.3, 6.3.2 |
nodejs-qs: Prototype override protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
|
| qs |
CVE-2022-24999 |
高危 |
4.0.0 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| qs |
CVE-2017-1000048 |
高危 |
5.2.0 |
6.0.4, 6.1.2, 6.2.3, 6.3.2 |
nodejs-qs: Prototype override protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
|
| qs |
CVE-2022-24999 |
高危 |
5.2.0 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| qs |
CVE-2022-24999 |
高危 |
6.10.1 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| qs |
CVE-2022-24999 |
高危 |
6.4.0 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| qs |
CVE-2022-24999 |
高危 |
6.5.2 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| qs |
CVE-2022-24999 |
高危 |
6.7.0 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| qs |
CVE-2022-24999 |
高危 |
6.7.0 |
6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 |
express: "qs" prototype poisoning causes the hang of the node process
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
|
| semver |
CVE-2022-25883 |
高危 |
5.3.0 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.4.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
5.7.1 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
6.3.0 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
6.3.0 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
6.3.0 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
7.0.0 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
7.3.4 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
7.3.5 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
7.3.7 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
7.4.0 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| semver |
CVE-2022-25883 |
高危 |
7.4.0 |
7.5.2, 6.3.1, 5.7.2 |
nodejs-semver: Regular expression denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
|
| sharp |
GHSA-54xq-cgqr-rpm3 |
高危 |
0.30.7 |
0.32.6 |
sharp vulnerability in libwebp dependency CVE-2023-4863
漏洞详情: https://github.com/advisories/GHSA-54xq-cgqr-rpm3
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| ua-parser-js |
CVE-2022-25927 |
高危 |
1.0.2 |
0.7.33, 1.0.33 |
ua-parser-js: ReDoS vulnerability via the trim() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25927
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:44
|
| basic-auth-connect |
CVE-2024-47178 |
高危 |
1.0.0 |
1.1.0 |
basic-auth-connect: timing-unsafe equality comparison can leak timing information
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47178
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-30 16:15 修改: 2024-10-04 13:51
|
| body-parser |
CVE-2024-45590 |
高危 |
1.19.0 |
1.20.3 |
body-parser: Denial of Service Vulnerability in body-parser
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
|
| body-parser |
CVE-2024-45590 |
高危 |
1.19.0 |
1.20.3 |
body-parser: Denial of Service Vulnerability in body-parser
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
|
| body-parser |
CVE-2024-45590 |
高危 |
1.19.2 |
1.20.3 |
body-parser: Denial of Service Vulnerability in body-parser
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
|
| body-parser |
CVE-2024-45590 |
高危 |
1.20.0 |
1.20.3 |
body-parser: Denial of Service Vulnerability in body-parser
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
|
| braces |
CVE-2024-4068 |
高危 |
2.3.2 |
3.0.3 |
braces: fails to limit the number of characters it can handle
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-05-14 15:42 修改: 2024-07-03 02:07
|
| ws |
CVE-2024-37890 |
高危 |
5.2.3 |
5.2.4, 6.2.3, 7.5.10, 8.17.1 |
nodejs-ws: denial of service when handling a request with many HTTP headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-06-17 20:15 修改: 2024-06-20 12:44
|
| ws |
CVE-2024-37890 |
高危 |
7.5.7 |
5.2.4, 6.2.3, 7.5.10, 8.17.1 |
nodejs-ws: denial of service when handling a request with many HTTP headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-06-17 20:15 修改: 2024-06-20 12:44
|
| ws |
CVE-2024-37890 |
高危 |
8.8.1 |
5.2.4, 6.2.3, 7.5.10, 8.17.1 |
nodejs-ws: denial of service when handling a request with many HTTP headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-06-17 20:15 修改: 2024-06-20 12:44
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.39 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.39 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
8.3.5 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
8.4.16 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| matrix-js-sdk |
CVE-2024-42369 |
中危 |
12.5.0 |
34.3.1 |
matrix-js-sdk will freeze when a user sets a room with itself as a its predecessor
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42369
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-08-20 15:15 修改: 2024-08-21 16:01
|
| micromatch |
CVE-2024-4067 |
中危 |
4.0.5 |
4.0.8 |
micromatch: vulnerable to Regular Expression Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-05-14 15:42 修改: 2024-08-28 00:15
|
| axios |
CVE-2023-45857 |
中危 |
0.23.0 |
1.6.0, 0.28.0 |
axios: exposure of confidential data stored in cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45857
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-11-08 21:15 修改: 2024-06-21 19:15
|
| connect |
CVE-2018-3717 |
中危 |
2.12.0 |
2.14.0 |
nodejs-connect: XSS due to a lack of validation of file in directory.js middleware
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3717
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2023-02-28 18:08
|
| qs |
NSWG-ECO-28 |
中危 |
0.6.6 |
>= 1.x |
Denial-of-Service Extended Event Loop Blocking
漏洞详情:
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| cookie-signature |
CVE-2016-1000236 |
中危 |
1.0.1 |
>=1.0.6 |
nodejs-cookie-signature: Timing attack vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1000236
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2019-11-19 17:15 修改: 2023-11-07 02:29
|
| express |
CVE-2024-29041 |
中危 |
4.13.3 |
4.19.2, 5.0.0-beta.3 |
express: cause malformed URLs to be evaluated
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29041
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-25 21:15 修改: 2024-03-26 12:55
|
| express |
CVE-2024-43796 |
中危 |
4.13.3 |
4.20.0, 5.0.0 |
express: Improper Input Handling in Express Redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43796
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:07
|
| express |
CVE-2024-29041 |
中危 |
4.17.3 |
4.19.2, 5.0.0-beta.3 |
express: cause malformed URLs to be evaluated
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29041
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-25 21:15 修改: 2024-03-26 12:55
|
| moment-timezone |
GHSA-v78c-4p63-2j6c |
中危 |
0.5.34 |
0.5.35 |
Cleartext Transmission of Sensitive Information in moment-timezone
漏洞详情: https://github.com/advisories/GHSA-v78c-4p63-2j6c
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| mongodb |
CVE-2021-32050 |
中危 |
4.3.1 |
3.6.10, 4.17.0, 5.8.0 |
Some MongoDB Drivers may erroneously publish events containing authent ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32050
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-08-29 16:15 修改: 2023-10-06 15:15
|
| mongodb |
CVE-2021-32050 |
中危 |
4.7.0 |
3.6.10, 4.17.0, 5.8.0 |
Some MongoDB Drivers may erroneously publish events containing authent ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32050
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-08-29 16:15 修改: 2023-10-06 15:15
|
| ms |
CVE-2017-20162 |
中危 |
0.7.1 |
2.0.0 |
Vercel ms Inefficient Regular Expression Complexity vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20162
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-01-05 12:15 修改: 2024-05-17 01:17
|
| ms |
CVE-2017-20162 |
中危 |
0.7.1 |
2.0.0 |
Vercel ms Inefficient Regular Expression Complexity vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20162
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-01-05 12:15 修改: 2024-05-17 01:17
|
| request |
CVE-2023-28155 |
中危 |
2.88.0 |
|
The Request package through 2.88.1 for Node.js allows a bypass of SSRF ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
|
| request |
CVE-2023-28155 |
中危 |
2.88.2 |
|
The Request package through 2.88.1 for Node.js allows a bypass of SSRF ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
|
| sanitize-html |
CVE-2024-21501 |
中危 |
2.7.2 |
2.12.1 |
sanitize-html: Information Exposure when used on the backend
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21501
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-02-24 05:15 修改: 2024-08-28 18:35
|
| nanoid |
CVE-2021-23566 |
中危 |
3.1.23 |
3.1.31 |
nanoid: Information disclosure via valueOf() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23566
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-01-14 20:15 修改: 2022-07-12 17:42
|
| express |
CVE-2024-43796 |
中危 |
4.17.3 |
4.20.0, 5.0.0 |
express: Improper Input Handling in Express Redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43796
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:07
|
| fast-xml-parser |
CVE-2023-26920 |
中危 |
3.21.1 |
4.1.2 |
fast-xml-parser vulnerable to Prototype Pollution through tag or attribute name
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26920
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-12-12 17:15 修改: 2023-12-14 20:41
|
| axios |
CVE-2023-45857 |
中危 |
0.26.1 |
1.6.0, 0.28.0 |
axios: exposure of confidential data stored in cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45857
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-11-08 21:15 修改: 2024-06-21 19:15
|
| follow-redirects |
CVE-2023-26159 |
中危 |
1.15.1 |
1.15.4 |
follow-redirects: Improper Input Validation due to the improper handling of URLs by the url.parse()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26159
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-01-02 05:15 修改: 2024-01-23 03:15
|
| jsonwebtoken |
CVE-2022-23540 |
中危 |
8.5.1 |
9.0.0 |
jsonwebtoken: Insecure default algorithm in jwt.verify() could lead to signature validation bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23540
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-12-22 19:15 修改: 2024-06-21 19:15
|
| jsonwebtoken |
CVE-2022-23541 |
中危 |
8.5.1 |
9.0.0 |
jsonwebtoken: Insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23541
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-12-22 18:15 修改: 2024-06-21 19:15
|
| follow-redirects |
CVE-2024-28849 |
中危 |
1.15.1 |
1.15.6 |
follow-redirects: Possible credential leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28849
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-14 17:15 修改: 2024-03-23 03:15
|
| katex |
CVE-2024-28243 |
中危 |
0.11.1 |
0.16.10 |
KaTeX is a JavaScript library for TeX math rendering on the web. KaTeX ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28243
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-25 20:15 修改: 2024-03-26 12:55
|
| katex |
CVE-2024-28245 |
中危 |
0.11.1 |
0.16.10 |
KaTeX is a JavaScript library for TeX math rendering on the web. KaTeX ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28245
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-25 20:15 修改: 2024-03-26 12:55
|
| katex |
CVE-2024-28246 |
中危 |
0.11.1 |
0.16.10 |
KaTeX is a JavaScript library for TeX math rendering on the web. Code ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28246
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-25 20:15 修改: 2024-03-26 12:55
|
| node-forge |
CVE-2022-0122 |
中危 |
0.7.6 |
1.0.0 |
Open Redirect in node-forge
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0122
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-01-06 05:15 修改: 2022-01-12 20:14
|
| node-forge |
CVE-2022-24773 |
中危 |
0.7.6 |
1.3.0 |
node-forge: Signature verification leniency in checking `DigestInfo` structure
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24773
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2022-03-18 14:15 修改: 2022-03-28 14:20
|
| nodemailer |
GHSA-9h6g-pr28-7cqp |
中危 |
6.6.3 |
6.9.9 |
nodemailer ReDoS when trying to send a specially crafted email
漏洞详情: https://github.com/advisories/GHSA-9h6g-pr28-7cqp
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| nodemailer |
GHSA-9h6g-pr28-7cqp |
中危 |
6.7.0 |
6.9.9 |
nodemailer ReDoS when trying to send a specially crafted email
漏洞详情: https://github.com/advisories/GHSA-9h6g-pr28-7cqp
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| nodemailer |
GHSA-9h6g-pr28-7cqp |
中危 |
6.7.8 |
6.9.9 |
nodemailer ReDoS when trying to send a specially crafted email
漏洞详情: https://github.com/advisories/GHSA-9h6g-pr28-7cqp
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| lodash.trim |
CVE-2020-28500 |
中危 |
4.5.1 |
|
nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
|
| axios |
CVE-2023-45857 |
中危 |
0.27.2 |
1.6.0, 0.28.0 |
axios: exposure of confidential data stored in cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45857
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-11-08 21:15 修改: 2024-06-21 19:15
|
| @rocket.chat/message-parser |
CVE-2024-46935 |
中危 |
0.31.22 |
0.31.30 |
Denial of service in rocket chat message parser
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-46935
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-25 01:15 修改: 2024-09-26 17:39
|
| axios |
CVE-2023-45857 |
中危 |
0.21.4 |
1.6.0, 0.28.0 |
axios: exposure of confidential data stored in cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45857
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-11-08 21:15 修改: 2024-06-21 19:15
|
| send |
CVE-2014-6394 |
中危 |
0.1.4 |
>= 0.8.4 |
nodejs-send: directory traversal vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2014-6394
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2014-10-08 17:55 修改: 2017-09-08 01:29
|
| send |
CVE-2015-8859 |
中危 |
0.1.4 |
>=0.11.1 |
The send package before 0.11.1 for Node.js allows attackers to obtain ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8859
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2017-01-23 21:59 修改: 2023-09-12 19:42
|
| send |
CVE-2024-43799 |
中危 |
0.1.4 |
0.19.0 |
send: Code Execution Vulnerability in Send Library
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43799
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:57
|
| send |
CVE-2024-43799 |
中危 |
0.13.0 |
0.19.0 |
send: Code Execution Vulnerability in Send Library
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43799
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:57
|
| send |
CVE-2024-43799 |
中危 |
0.17.1 |
0.19.0 |
send: Code Execution Vulnerability in Send Library
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43799
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:57
|
| send |
CVE-2024-43799 |
中危 |
0.17.2 |
0.19.0 |
send: Code Execution Vulnerability in Send Library
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43799
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:57
|
| serve-static |
CVE-2024-43800 |
中危 |
1.10.0 |
1.16.0, 2.1.0 |
serve-static: Improper Sanitization in serve-static
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43800
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 17:36
|
| serve-static |
CVE-2024-43800 |
中危 |
1.14.2 |
1.16.0, 2.1.0 |
serve-static: Improper Sanitization in serve-static
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43800
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-09-10 15:15 修改: 2024-09-20 17:36
|
| got |
CVE-2022-33987 |
中危 |
6.7.1 |
12.1.0, 11.8.5 |
nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33987
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2022-06-18 21:15 修改: 2022-06-28 16:15
|
| tar |
CVE-2024-28863 |
中危 |
4.4.19 |
6.2.1 |
node-tar: denial of service while parsing a tar file due to lack of folders depth validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
|
| tar |
CVE-2024-28863 |
中危 |
4.4.19 |
6.2.1 |
node-tar: denial of service while parsing a tar file due to lack of folders depth validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
|
| tar |
CVE-2024-28863 |
中危 |
4.4.19 |
6.2.1 |
node-tar: denial of service while parsing a tar file due to lack of folders depth validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
|
| tar |
CVE-2024-28863 |
中危 |
6.1.11 |
6.2.1 |
node-tar: denial of service while parsing a tar file due to lack of folders depth validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
|
| tar |
CVE-2024-28863 |
中危 |
6.1.11 |
6.2.1 |
node-tar: denial of service while parsing a tar file due to lack of folders depth validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
|
| tar |
CVE-2024-28863 |
中危 |
6.1.13 |
6.2.1 |
node-tar: denial of service while parsing a tar file due to lack of folders depth validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
|
| tough-cookie |
CVE-2023-26136 |
中危 |
2.4.3 |
4.1.3 |
tough-cookie: prototype pollution in cookie memstore
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
|
| tough-cookie |
CVE-2023-26136 |
中危 |
2.5.0 |
4.1.3 |
tough-cookie: prototype pollution in cookie memstore
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
|
| tough-cookie |
CVE-2023-26136 |
中危 |
4.0.0 |
4.1.3 |
tough-cookie: prototype pollution in cookie memstore
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
|
| highlight.js |
GHSA-7wwv-vh3v-89cq |
中危 |
9.18.5 |
10.4.1 |
ReDOS vulnerabities: multiple grammars
漏洞详情: https://github.com/advisories/GHSA-7wwv-vh3v-89cq
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| highlight.js |
GHSA-7wwv-vh3v-89cq |
中危 |
9.18.5 |
10.4.1 |
ReDOS vulnerabities: multiple grammars
漏洞详情: https://github.com/advisories/GHSA-7wwv-vh3v-89cq
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| matrix-js-sdk |
CVE-2023-29529 |
中危 |
12.5.0 |
24.1.0 |
matrix-js-sdk vulnerable to invisible eavesdropping in group calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29529
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-04-14 19:15 修改: 2023-04-25 14:06
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| vm2 |
CVE-2023-32313 |
中危 |
3.9.16 |
3.9.18 |
vm2: Inspect Manipulation
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32313
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-05-15 20:15 修改: 2023-05-24 20:43
|
| word-wrap |
CVE-2023-26115 |
中危 |
1.2.3 |
1.2.4 |
word-wrap: ReDoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26115
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-06-22 05:15 修改: 2024-06-21 19:15
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| postcss |
CVE-2023-44270 |
中危 |
7.0.36 |
8.4.31 |
An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-09-29 22:15 修改: 2023-10-10 17:19
|
| xml2js |
CVE-2023-0842 |
中危 |
0.4.19 |
0.5.0 |
node-xml2js: xml2js is vulnerable to prototype pollution
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0842
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-04-05 20:15 修改: 2024-03-14 21:15
|
| xml2js |
CVE-2023-0842 |
中危 |
0.4.23 |
0.5.0 |
node-xml2js: xml2js is vulnerable to prototype pollution
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0842
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2023-04-05 20:15 修改: 2024-03-14 21:15
|
| elliptic |
CVE-2024-42461 |
低危 |
6.5.4 |
6.5.7 |
elliptic: nodejs/elliptic: ECDSA implementation malleability due to BER-enconded signatures being allowed
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42461
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-08-02 07:16 修改: 2024-08-16 16:51
|
| node-forge |
GHSA-5rrq-pxf6-6jx5 |
低危 |
0.7.6 |
1.0.0 |
Prototype Pollution in node-forge debug API.
漏洞详情: https://github.com/advisories/GHSA-5rrq-pxf6-6jx5
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| node-forge |
GHSA-gf8q-jrpm-jvxq |
低危 |
0.7.6 |
1.0.0 |
URL parsing in node-forge could lead to undesired behavior.
漏洞详情: https://github.com/advisories/GHSA-gf8q-jrpm-jvxq
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| node-forge |
GHSA-wxgw-qj99-44c2 |
低危 |
0.7.6 |
0.10.0 |
Prototype Pollution in node-forge util.setPath API
漏洞详情: https://github.com/advisories/GHSA-wxgw-qj99-44c2
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| elliptic |
CVE-2024-48948 |
低危 |
6.5.4 |
|
elliptic: ECDSA signature verification error may reject legitimate transactions
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-48948
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-15 14:15 修改: 2024-10-16 16:38
|
| elliptic |
CVE-2024-48949 |
低危 |
6.5.4 |
6.5.6 |
elliptic: Missing Validation in Elliptic's EDDSA Signature Verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-48949
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-10 01:15 修改: 2024-10-15 14:07
|
| moment-timezone |
GHSA-56x4-j7p9-fcf9 |
低危 |
0.5.34 |
0.5.35 |
Command Injection in moment-timezone
漏洞详情: https://github.com/advisories/GHSA-56x4-j7p9-fcf9
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| cookie |
CVE-2024-47764 |
低危 |
0.4.0 |
0.7.0 |
cookie: cookie accepts cookie name, path, and domain with out of bounds characters
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
|
| debug |
CVE-2017-16137 |
低危 |
0.8.1 |
2.6.9, 3.1.0, 3.2.7, 4.3.1 |
nodejs-debug: Regular expression Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
|
| cookie |
CVE-2024-47764 |
低危 |
0.4.1 |
0.7.0 |
cookie: cookie accepts cookie name, path, and domain with out of bounds characters
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
|
| debug |
CVE-2017-16137 |
低危 |
2.2.0 |
2.6.9, 3.1.0, 3.2.7, 4.3.1 |
nodejs-debug: Regular expression Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
|
| ip |
CVE-2023-42282 |
低危 |
1.1.5 |
2.0.1, 1.1.9 |
nodejs-ip: arbitrary code execution via the isPublic() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-02-08 17:15 修改: 2024-10-09 15:14
|
| ip |
CVE-2023-42282 |
低危 |
1.1.5 |
2.0.1, 1.1.9 |
nodejs-ip: arbitrary code execution via the isPublic() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282
镜像层: sha256:81e7cf1eebcef1c12eaec534e03aac537c82aa320c7564965298962880315850
发布日期: 2024-02-08 17:15 修改: 2024-10-09 15:14
|
| debug |
CVE-2017-16137 |
低危 |
4.1.1 |
2.6.9, 3.1.0, 3.2.7, 4.3.1 |
nodejs-debug: Regular expression Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
|
| ip |
CVE-2023-42282 |
低危 |
1.1.8 |
2.0.1, 1.1.9 |
nodejs-ip: arbitrary code execution via the isPublic() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-02-08 17:15 修改: 2024-10-09 15:14
|
| cookie |
CVE-2024-47764 |
低危 |
0.4.2 |
0.7.0 |
cookie: cookie accepts cookie name, path, and domain with out of bounds characters
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
|
| cookie |
CVE-2024-47764 |
低危 |
0.5.0 |
0.7.0 |
cookie: cookie accepts cookie name, path, and domain with out of bounds characters
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
|
| ip |
CVE-2023-42282 |
低危 |
2.0.0 |
2.0.1, 1.1.9 |
nodejs-ip: arbitrary code execution via the isPublic() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282
镜像层: sha256:6fe41dfb700e63b1423f45b9c0c4df9c694e233d8cff150abecf01af65f2598f
发布日期: 2024-02-08 17:15 修改: 2024-10-09 15:14
|
| node-fetch |
CVE-2020-15168 |
低危 |
2.3.0 |
2.6.1, 3.0.0-beta.9 |
node-fetch: size of data after fetch() JS thread leads to DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15168
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2020-09-10 19:15 修改: 2020-09-17 20:21
|
| ip |
CVE-2023-42282 |
低危 |
2.0.0 |
2.0.1, 1.1.9 |
nodejs-ip: arbitrary code execution via the isPublic() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-02-08 17:15 修改: 2024-10-09 15:14
|
| cookie |
CVE-2024-47764 |
低危 |
0.1.0 |
0.7.0 |
cookie: cookie accepts cookie name, path, and domain with out of bounds characters
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
|
| cookie |
CVE-2024-47764 |
低危 |
0.1.3 |
0.7.0 |
cookie: cookie accepts cookie name, path, and domain with out of bounds characters
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
|
| elliptic |
CVE-2024-42459 |
低危 |
6.5.4 |
6.5.7 |
elliptic: nodejs/elliptic: EDDSA signature malleability due to missing signature length check
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42459
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-08-02 07:16 修改: 2024-08-02 15:35
|
| elliptic |
CVE-2024-42460 |
低危 |
6.5.4 |
6.5.7 |
elliptic: nodejs/elliptic: ECDSA signature malleability due to missing checks
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42460
镜像层: sha256:62f9b7606ef2ca6dd9e3c13659cf344fd441e8383929fe907e27b261fc5b2af3
发布日期: 2024-08-02 07:16 修改: 2024-08-02 16:35
|