Skip to main content

Codem Transcode

1 CVEs product

Monthly

CVE-2013-7377 npm HIGH PATCH This Week

The codem-transcode module before 0.5.0 for Node.js, when ffprobe is enabled, allows remote attackers to execute arbitrary commands via a POST request to /probe. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. This Command Injection vulnerability could allow attackers to inject arbitrary commands into system command execution.

Node.js Command Injection Codem Transcode
NVD
CVSS 3.0
8.1
EPSS
1.3%
EPSS 1% CVSS 8.1
HIGH PATCH This Week

The codem-transcode module before 0.5.0 for Node.js, when ffprobe is enabled, allows remote attackers to execute arbitrary commands via a POST request to /probe. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. This Command Injection vulnerability could allow attackers to inject arbitrary commands into system command execution.

Node.js Command Injection Codem Transcode
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy