| | | |
| | |
| Loading… |
|
oval:com.altx-soft.win:def:98265 | 1 | Cross-site request forgery vulnerability in Node.js package mongo-express for all versions (CVE-2023-52555) | vulnerability |
oval:com.altx-soft.win:def:98266 | 1 | Out-of-bounds read vulnerability in Node.js package @openzeppelin/contracts-upgradeable before 4.9.6 and before 5.0.2, @openzeppelin/contracts before 4.9.6 and before 5.0.2 (CVE-2024-27094) | vulnerability |
oval:com.altx-soft.win:def:98267 | 1 | Use after free vulnerability in Node.js package electron before 27.3.5 and before 28.2.6 (CVE-2024-25062) | vulnerability |
oval:com.altx-soft.win:def:98268 | 1 | Regular expression denial of service vulnerability in Node.js package es5-ext before 0.10.63 (CVE-2024-27088) | vulnerability |
oval:com.altx-soft.win:def:98269 | 1 | Cross-site scripting vulnerability in Node.js package railroad-diagrams for all versions (CVE-2024-26467) | vulnerability |
oval:com.altx-soft.win:def:98270 | 1 | Path traversal vulnerability in Node.js package @backstage/backend-common before 0.19.10 and before 0.20.2 and before 0.21.1 (CVE-2024-26150) | vulnerability |
oval:com.altx-soft.win:def:98271 | 1 | Information exposure vulnerability in Node.js package sanitize-html before 2.12.1 (CVE-2024-21501) | vulnerability |
oval:com.altx-soft.win:def:98272 | 1 | Use of cryptographically weak pseudo-random number generator vulnerability in Node.js package @dfinity/auth-client before 1.0.1, @dfinity/identity before 1.0.1 (CVE-2024-1631) | vulnerability |
oval:com.altx-soft.win:def:98273 | 1 | Use after free vulnerability in Node.js package electron before 27.3.4 and before 28.2.5 (CVE-2024-1670) | vulnerability |
oval:com.altx-soft.win:def:98274 | 1 | Origin validation error vulnerability in Node.js package meshcentral before 1.1.21 (CVE-2024-26135) | vulnerability |
oval:com.altx-soft.win:def:98275 | 1 | Cross-site scripting vulnerability in Node.js package @serenity-is/corelib before 6.8.0 (CVE-2024-26318) | vulnerability |
oval:com.altx-soft.win:def:98276 | 1 | Cross-site scripting vulnerability in Node.js package electron-pdf since 20.0.0 (CVE-2024-1648) | vulnerability |
oval:com.altx-soft.win:def:98277 | 1 | Regular expression denial of service vulnerability in Node.js package urlite for all versions (CVE-2023-51931) | vulnerability |
oval:com.altx-soft.win:def:98741 | 1 | Url redirection to untrusted site vulnerability in Node.js package directus before 10.10.0 (CVE-2024-28239) | vulnerability |
oval:com.altx-soft.win:def:98742 | 1 | Information exposure through sent data vulnerability in Node.js package directus before 10.10.0 (CVE-2024-28238) | vulnerability |
oval:com.altx-soft.win:def:98743 | 1 | Resource exhaustion vulnerability in Node.js package jose before 2.0.7 and before 4.15.5, jose-node-esm-runtime before 4.15.5, jose-node-cjs-runtime before 4.15.5 (CVE-2024-28176) | vulnerability |
oval:com.altx-soft.win:def:98744 | 1 | Server-side request forgery vulnerability in Node.js package rsshub before 1.0.0-master.a429472 (CVE-2024-27927) | vulnerability |
oval:com.altx-soft.win:def:98745 | 1 | Trusting http permission methods on the server side vulnerability in Node.js package @tomphttp/bare-server-node before 2.0.2 (CVE-2024-27922) | vulnerability |
oval:com.altx-soft.win:def:98746 | 1 | Prototype pollution vulnerability in Node.js package jsonata before 1.8.7 and before 2.0.4 (CVE-2024-27307) | vulnerability |
oval:com.altx-soft.win:def:98747 | 1 | Untrusted search path vulnerability in Node.js package app-builder-lib before 24.13.2 (CVE-2024-27303) | vulnerability |
oval:com.altx-soft.win:def:98748 | 1 | Path traversal vulnerability in Node.js package webui-aria2 for all versions (CVE-2023-39141) | vulnerability |