admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-03-30 16:00:41 +00:00
parent 91d46e3d83
commit eca2eb7df7
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
2 changed files with 15 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
2021/23xxx/CVE-2021-23363.json
View File

@ -48,16 +48,19 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JS-KILLBYPORT-1078531"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JS-KILLBYPORT-1078531",
"name": "https://snyk.io/vuln/SNYK-JS-KILLBYPORT-1078531"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/GuyMograbi/kill-by-port/blob/16dcbe264b6b4a5ecf409661b42836dd286fd43f/index.js%23L8"
"refsource": "MISC",
"url": "https://github.com/GuyMograbi/kill-by-port/blob/16dcbe264b6b4a5ecf409661b42836dd286fd43f/index.js%23L8",
"name": "https://github.com/GuyMograbi/kill-by-port/blob/16dcbe264b6b4a5ecf409661b42836dd286fd43f/index.js%23L8"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/GuyMograbi/kill-by-port/commit/ea5b1f377e196a4492e05ff070eba8b30b7372c4"
"refsource": "MISC",
"url": "https://github.com/GuyMograbi/kill-by-port/commit/ea5b1f377e196a4492e05ff070eba8b30b7372c4",
"name": "https://github.com/GuyMograbi/kill-by-port/commit/ea5b1f377e196a4492e05ff070eba8b30b7372c4"
}
]
},
@ -65,7 +68,7 @@
"description_data": [
{
"lang": "eng",
"value": "This affects the package kill-by-port before 0.0.2.\n If (attacker-controlled) user input is given to the killByPort function, it is possible for an attacker to execute arbitrary commands.\r\nThis is due to use of the child_process exec function without input sanitization.\r\n\r\n\r\n"
"value": "This affects the package kill-by-port before 0.0.2. If (attacker-controlled) user input is given to the killByPort function, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization."
}
]
},

5
2021/27xxx/CVE-2021-27516.json
View File

@ -61,6 +61,11 @@
"url": "https://github.com/medialize/URI.js/releases/tag/v1.19.6",
"refsource": "MISC",
"name": "https://github.com/medialize/URI.js/releases/tag/v1.19.6"
},
{
"refsource": "MISC",
"name": "https://advisory.checkmarx.net/advisory/CX-2021-4305",
"url": "https://advisory.checkmarx.net/advisory/CX-2021-4305"
}
]
}