Skip to main content

Send

2 CVEs product

Monthly

CVE-2024-43799 npm MEDIUM PATCH This Month

Send is a library for streaming files from the file system as a http response. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Send
NVD GitHub
CVSS 3.1
4.7
EPSS
0.5%
CVE-2015-8859 npm MEDIUM PATCH This Month

The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Node.js Information Disclosure Send
NVD VulDB
CVSS 3.1
5.3
EPSS
0.6%
EPSS 1% CVSS 4.7
MEDIUM PATCH This Month

Send is a library for streaming files from the file system as a http response. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Send
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Node.js Information Disclosure Send
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy