Skip to main content

Socket Io File

2 CVEs product

Monthly

CVE-2020-24807 npm HIGH This Week

The socket.io-file package through 2.0.31 for Node.js relies on client-side validation of file types, which allows remote attackers to execute arbitrary code by uploading an executable file via a. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Node.js RCE Socket Io File
NVD GitHub
CVSS 3.1
7.8
EPSS
2.1%
CVE-2020-15779 npm HIGH POC This Week

A Path Traversal issue was discovered in the socket.io-file package through 2.0.31 for Node.js. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Path Traversal Socket Io File
NVD GitHub
CVSS 3.1
7.5
EPSS
1.6%
EPSS 2% CVSS 7.8
HIGH This Week

The socket.io-file package through 2.0.31 for Node.js relies on client-side validation of file types, which allows remote attackers to execute arbitrary code by uploading an executable file via a. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Node.js RCE Socket Io File
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC This Week

A Path Traversal issue was discovered in the socket.io-file package through 2.0.31 for Node.js. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js Path Traversal Socket Io File
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy