The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Node.js Modules ~ not comprehensive

Node.js moment: denial of service via Regular Expression
An attacker can trigger a fatal error via Regular Expression of Node.js moment, in order to trigger a denial of service...
CERTFR-2019-AVI-132, CVE-2016-4055, NPM-55, TNS-2019-02, VIGILANCE-VUL-28878
Node.js opencv: code execution via Command Injection
An attacker can use a vulnerability via Command Injection of Node.js opencv, in order to run code...
NPM-789, VIGILANCE-VUL-28861
Node.js js-yaml: denial of service
An attacker can trigger a fatal error of Node.js js-yaml, in order to trigger a denial of service...
NPM-788, VIGILANCE-VUL-28824
Node.js safer-eval: code execution via Sandbox Breakout
An attacker can use a vulnerability via Sandbox Breakout of Node.js safer-eval, in order to run code...
NPM-787, VIGILANCE-VUL-28724
Node.js braces: denial of service via Regular Expression
An attacker can trigger a fatal error via Regular Expression of Node.js braces, in order to trigger a denial of service...
NPM-786, VIGILANCE-VUL-28534
Node.js clean-css: denial of service via Regular Expression
An attacker can trigger a fatal error via Regular Expression of Node.js clean-css, in order to trigger a denial of service...
NPM-785, VIGILANCE-VUL-28533
Node.js node-os-utils: code execution
An attacker can use a vulnerability of Node.js node-os-utils, in order to run code...
NPM-784, VIGILANCE-VUL-28518
Node.js url-relative: denial of service
An attacker can trigger a fatal error of Node.js url-relative, in order to trigger a denial of service...
NPM-783, VIGILANCE-VUL-28517
Node.js lodash: privilege escalation via Prototype Pollution
An attacker can bypass restrictions via Prototype Pollution of Node.js lodash, in order to escalate his privileges...
CVE-2018-16487, ibm10958783, NPM-782, VIGILANCE-VUL-28516
Node.js Modules: four vulnerabilities via Prototype Pollution
An attacker can use several vulnerabilities via Prototype Pollution of Node.js Modules...
CVE-2018-16489, CVE-2018-16490, CVE-2018-16491, ibm10958783, NPM-778, NPM-779, NPM-780, NPM-781, VIGILANCE-VUL-28463
Our database contains other pages. You can request a free trial to read them.

Display information about Node.js Modules ~ not comprehensive: