Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nodejs node.js 0.12.6 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2015-5380
The Utf8DecoderBase::WriteUtf16Slow function in unicode-decoder.cc in Google V8, as used in Node.js prior to 0.12.6, io.js prior to 1.8.3 and 2.x prior to 2.3.3, and other products, does not verify that there is memory available for a UTF-16 surrogate pair, which allows remote ma...
Google V8 -
Iojs Io.js 2.0.0
Iojs Io.js 2.3.2
Iojs Io.js 2.0.2
Iojs Io.js 2.2.0
Iojs Io.js 2.0.1
Iojs Io.js 2.1.0
Iojs Io.js 2.3.1
Iojs Io.js 2.3.0
Iojs Io.js
Iojs Io.js 2.2.1
Nodejs Node.js
446
VMScore
CVE-2015-8027
Node.js 0.12.x prior to 0.12.9, 4.x prior to 4.2.3, and 5.x prior to 5.1.1 does not ensure the availability of a parser for each HTTP socket, which allows remote malicious users to cause a denial of service (uncaughtException and service outage) via a pipelined HTTP request.
Nodejs Node.js 0.12.7
Nodejs Node.js 0.12.6
Nodejs Node.js 5.1.0
Nodejs Node.js 5.0.0
Nodejs Node.js 0.12.4
Nodejs Node.js 0.12.3
Nodejs Node.js 4.2.0
Nodejs Node.js 0.12.8
Nodejs Node.js 0.12.1
Nodejs Node.js 0.12.5
Nodejs Node.js 4.2.2
Nodejs Node.js 4.2.1
Nodejs Node.js 0.12.2
Nodejs Node.js 0.12.0
2 Articles
445
VMScore
CVE-2016-3956
The CLI in npm prior to 2.15.1 and 3.x prior to 3.8.3, as used in Node.js 0.10 prior to 0.10.44, 0.12 prior to 0.12.13, 4 prior to 4.4.2, and 5 prior to 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by rea...
Ibm Sdk
Nodejs Node.js 5.6.0
Nodejs Node.js 4.4.0
Nodejs Node.js 4.3.2
Nodejs Node.js 4.3.1
Nodejs Node.js 5.2.0
Nodejs Node.js 5.1.0
Nodejs Node.js 4.2.1
Nodejs Node.js 4.1.2
Nodejs Node.js 0.12.8
Nodejs Node.js 0.12.6
Nodejs Node.js 0.10.9
Nodejs Node.js 0.10.7
Nodejs Node.js 0.10.38
Nodejs Node.js 0.10.36
Nodejs Node.js 0.10.31
Nodejs Node.js 0.10.3
Nodejs Node.js 0.10.23
Nodejs Node.js 0.10.21
Nodejs Node.js 0.10.16
Nodejs Node.js 0.10.14
Nodejs Node.js 0.10.1
445
VMScore
CVE-2016-2086
Node.js 0.10.x prior to 0.10.42, 0.12.x prior to 0.12.10, 4.x prior to 4.3.0, and 5.x prior to 5.6.0 allow remote malicious users to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header.
Nodejs Node.js 5.2.0
Nodejs Node.js 5.1.1
Nodejs Node.js 4.2.1
Nodejs Node.js 4.2.0
Nodejs Node.js 0.12.7
Nodejs Node.js 0.12.6
Nodejs Node.js 0.10.9
Nodejs Node.js 0.10.8
Nodejs Node.js 0.10.38
Nodejs Node.js 0.10.37
Nodejs Node.js 0.10.30
Nodejs Node.js 0.10.3
Nodejs Node.js 0.10.23
Nodejs Node.js 0.10.22
Nodejs Node.js 0.10.16
Nodejs Node.js 0.10.15
Nodejs Node.js 0.10.0
Nodejs Node.js 5.4.0
Nodejs Node.js 5.3.0
Nodejs Node.js 4.2.4
Nodejs Node.js 5.1.0
Nodejs Node.js 5.0.0
1 Article
391
VMScore
CVE-2016-2216
The HTTP header parsing code in Node.js 0.10.x prior to 0.10.42, 0.11.6 up to and including 0.11.16, 0.12.x prior to 0.12.10, 4.x prior to 4.3.0, and 5.x prior to 5.6.0 allows remote malicious users to bypass an HTTP response-splitting protection mechanism via UTF-8 encoded Unico...
Nodejs Node.js 5.3.0
Nodejs Node.js 5.2.0
Nodejs Node.js 4.2.2
Nodejs Node.js 4.2.1
Nodejs Node.js 0.12.8
Nodejs Node.js 0.12.7
Nodejs Node.js 0.12.0
Nodejs Node.js 0.11.16
Nodejs Node.js 0.11.15
Nodejs Node.js 0.11.8
Nodejs Node.js 0.11.7
Nodejs Node.js 0.10.41
Nodejs Node.js 0.10.40
Nodejs Node.js 0.10.33
Nodejs Node.js 0.10.32
Nodejs Node.js 5.1.1
Nodejs Node.js 5.1.0
Nodejs Node.js 5.0.0
Nodejs Node.js 4.2.0
Nodejs Node.js 4.1.2
Nodejs Node.js 0.12.6
Nodejs Node.js 0.12.5
26 Github repositories
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started