• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-22

CVE-2020-7683

February 26, 2023 by

This affects all versions of package rollup-plugin-server. There is no path sanitization in readFile operation performed inside the readFileFromContentBase function.

CVE-2020-7684

February 26, 2023 by

This affects all versions of package rollup-plugin-serve. There is no path sanitization in readFile operation.

CVE-2020-7686

February 26, 2023 by

This affects all versions of package rollup-plugin-dev-server. There is no path sanitization in readFile operation inside the readFileFromContentBase function.

CVE-2020-7687

February 26, 2023 by

This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js.

CVE-2020-7647

February 26, 2023 by

All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors.

CVE-2020-7648

February 26, 2023 by

All versions of snyk-broker before 4.72.2 are vulnerable to Arbitrary File Read. It allows arbitrary file reads for users who have access to Snyk’s internal network by appending the URL with a fragment identifier and a whitelisted path e.g. `#package.json`

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 183
  • Go to page 184
  • Go to page 185
  • Go to page 186
  • Go to page 187
  • Interim pages omitted …
  • Go to page 514
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE