cb
cvebase
.
~
/
products
/
pillarjs
/
send
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
pillarjs
/
Pillarjs Send
Pillarjs Send vulnerabilities
1 known vulnerability affecting
pillarjs/send
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2024-43799
P4
MEDIUM
CVSS 4.7
fixed in 0.19.0
2024-09-10
CVE-2024-43799 [MEDIUM] CWE-79 CVE-2024-43799: Send is a library for streaming files from the file system as a http response. Send passes untrusted Send is a library for streaming files from the file system as a http response. Send passes untrusted user input to SendStream.redirect() which executes untrusted code. This issue is patched in send 0.19.0.
nvd
Pillarjs Send vulnerabilities | cvebase