Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cesanta vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2022-25299
This affects the package cesanta/mongoose prior to 7.6. The unsafe handling of file names during upload using mg_http_upload() method may enable malicious users to write files to arbitrary locations outside the designated target folder.
Cesanta Mongoose
NA
CVE-2021-33442
An issue exists in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is NULL pointer dereference in json_printf() in mjs.c.
Cesanta Mjs
NA
CVE-2023-29569
Cesanta MJS v2.20.0 exists to contain a SEGV vulnerability via ffi_cb_impl_wpwwwww at src/mjs_ffi.c. This vulnerability can lead to a Denial of Service (DoS).
Cesanta Mjs 2.20.0
NA
CVE-2023-29570
Cesanta MJS v2.20.0 exists to contain a SEGV vulnerability via mjs_ffi_cb_free at src/mjs_ffi.c. This vulnerability can lead to a Denial of Service (DoS).
Cesanta Mjs 2.20.0
NA
CVE-2023-29571
Cesanta MJS v2.20.0 exists to contain a SEGV vulnerability via gc_sweep at src/mjs_gc.c. This vulnerability can lead to a Denial of Service (DoS).
Cesanta Mjs 2.20.0
605
VMScore
CVE-2021-46509
Cesanta MJS v2.20.0 exists to contain a stack overflow via snquote at mjs/src/mjs_json.c.
Cesanta Mjs 2.20.0
605
VMScore
CVE-2021-46524
Cesanta MJS v2.20.0 exists to contain a heap buffer overflow via snquote at mjs/src/mjs_json.c.
Cesanta Mjs 2.20.0
605
VMScore
CVE-2021-46527
Cesanta MJS v2.20.0 exists to contain a heap buffer overflow via mjs_get_cstring at src/mjs_string.c.
Cesanta Mjs 2.20.0
383
VMScore
CVE-2021-46529
Cesanta MJS v2.20.0 exists to contain a SEGV vulnerability via /usr/local/bin/mjs+0x8814e. This vulnerability can lead to a Denial of Service (DoS).
Cesanta Mjs 2.20.0
383
VMScore
CVE-2021-46539
Cesanta MJS v2.20.0 exists to contain a SEGV vulnerability via /lib/x86_64-linux-gnu/libc.so.6+0x45a1f. This vulnerability can lead to a Denial of Service (DoS).
Cesanta Mjs 2.20.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »