Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2020-8147

Published: 03/04/2020 Updated: 06/04/2020
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Utils-extend

Vulnerability Summary

Flaw in input validation in npm package utils-extend version 1.0.8 and previous versions may allow prototype pollution attack that may result in remote code execution or denial of service of applications using utils-extend.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

utils-extend project utils-extend

Github Repositories

https://github.com/ErikHorus1249/CVE_DOC

CVE Using Components with Known Vulnerabilities CVE-2020-8147

https://github.com/LittleZen/Hastemail

Simple API for check malicious mails (ALPHA)

Hastemail A Simple API for check Spam and Malicious mails CLIENT | ISSUE | HEROKU Index Presentazione Api Collegarsi a HastEmail Architettura e scelte di progetto Servizi esterni utlizzati About hastemail Licenza Patch Note Presentazione API HasteEmail è un Servizio Web che consente di filtrare le email segnalate come spam o che sono state riconosciute come ingannevo

https://github.com/Zenek-Hastro/Hastemail

Simple API for check malicious mails (ALPHA)

Hastemail A Simple API for check Spam and Malicious mails CLIENT | ISSUE | HEROKU Index Presentazione Api Collegarsi a HastEmail Architettura e scelte di progetto Servizi esterni utlizzati About hastemail Licenza Patch Note Presentazione API HasteEmail è un Servizio Web che consente di filtrare le email segnalate come spam o che sono state riconosciute come ingannevo

References

CWE-20https://hackerone.com/reports/801522https://nvd.nist.govhttps://github.com/ErikHorus1249/CVE_DOChttps://github.com/LittleZen/Hastemail
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook