mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
899 B
899 B
CVE-2019-5413
&color=brighgreen)
Description
An attacker can use the format parameter to inject arbitrary commands in the npm package morgan < 1.9.1.
POC
Reference
Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/HotDB-Community/HotDB-Engine
- https://github.com/developer3000S/PoC-in-GitHub
- https://github.com/forse01/CVE-2019-5413-NetBeans
- https://github.com/forse01/CVE-2019-5413-NetBeans-NoJson
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/ossf-cve-benchmark/CVE-2019-5413