Skip to main content

Sonicjs

2 CVEs product

Monthly

CVE-2023-33690 MEDIUM POC PATCH This Month

SonicJS up to v0.7.0 allows attackers to execute an authenticated path traversal when an attacker injects special characters into the filename of a backup CMS. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Path Traversal Sonicjs
NVD GitHub
CVSS 3.1
6.5
EPSS
0.9%
CVE-2022-42002 CRITICAL POC Act Now

SonicJS through 0.6.0 allows file overwrite. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Sonicjs
NVD GitHub
CVSS 3.1
9.1
EPSS
1.1%
EPSS 1% CVSS 6.5
MEDIUM POC PATCH This Month

SonicJS up to v0.7.0 allows attackers to execute an authenticated path traversal when an attacker injects special characters into the filename of a backup CMS. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Path Traversal Sonicjs
NVD GitHub
EPSS 1% CVSS 9.1
CRITICAL POC Act Now

SonicJS through 0.6.0 allows file overwrite. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Sonicjs
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy