1. Reverse Engineering >
  2. Exploits >
  3. Request up to 2.46.x/2.67.0 on Node.js information disclosure

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese

Request up to 2.46.x/2.67.0 on Node.js information disclosure


Exploits vom | Direktlink: vuldb.com Nachrichten Bewertung

A vulnerability was found in Request up to 2.46.x/2.67.0 on Node.js (JavaScript Library). It has been rated as problematic. Affected by this issue is an unknown function. Upgrading to version 2.47.0 eliminates this vulnerability....

Externe Webseite mit kompletten Inhalt öffnen

https://vuldb.com/?id.118916

Team Security Social Media

➤ Weitere Beiträge von Team Security | IT Sicherheit

  • Venom - A Multi-hop Proxy For Penetration Testers

    vom 371.66 Punkte ic_school_black_18dp
    Venom is a multi-hop proxy tool developed for penetration testers using Go. You can use venom to easily proxy network traffic to a multi-layer intranet, and easily manage intranet nodes.Features network topology multi-hop socks5 proxy multi-hop port forward port r
  • MyEtherWallet: Local Storage Custom Node Credentials Leak

    vom 282.37 Punkte ic_school_black_18dp
    Summary Credentials for a custom node are stored in plain text inside Local Storage on the user's machine. If this node is configured in a certain way this could lead to the theft of any funds in accounts attached to this node, by a local attacker. A
  • Pwn2Own Returns to Vancouver for 2020

    vom 246.41 Punkte ic_school_black_18dp
    Jump to the contest rules As each new year starts, we at the Zero Day Initiative begin to think of spring and the Vancouver edition of the Pwn2Own contest. It was in Vancouver where the contest began back in 2007 and continues to be where we push the
  • How to Upgrade to TypeScript without anybody noticing, Part 2

    vom 234.88 Punkte ic_school_black_18dp
    This guide will show you how to fix Typescript compile errors in Javascript project that recently added Typescript support via a tsconfig.json. It assumes that the tsconfig.json is configured according to the description in part 1 of this post, and that you also installed types for some of your dependencies from the @types/* namespace. This guide
  • MyEtherWallet: Malicious Node JavaScript Injection Leading to Theft of Private Keys and User Funds

    vom 160.67 Punkte ic_school_black_18dp
    Summary This vulnerability allows injection of arbitrary JavaScript code by the node that the MyEtherWallet user is connected to. This could be one of the default nodes (e.g api.myetherwallet.com), or a custom node. With this code injection, the priv
  • Scanner-Cli - A Project Security/Vulnerability/Risk Scanning Tool

    vom 157.11 Punkte ic_school_black_18dp
    The Hawkeye scanner-cli is a project security, vulnerability and general risk highlighting tool. It is meant to be integrated into your pre-commit hooks and your pipelines.Running and configuring the scannerThe Hawkeye scanner-cli assumes that your dir
  • Local Privilege Escalation in Win32k.sys Through Indexed Color Palettes

    vom 151.05 Punkte ic_school_black_18dp
    This is the second in our series of Top 5 interesting cases from 2019. Each of these bugs has some element that sets them apart from the more than 1,000 advisories released by the program this year. Today’s blog looks a local privilege escalation in t
  • NODE JS: ADVANCED CONCEPTS

    vom 139.13 Punkte ic_school_black_18dp
    Highest Rated Created by Stephen Grider Last updated 4/2018 English What Will I Learn? Absolutely master the Event Loop and understand each of its stages Utilize Worker Threads and Clustering to dramatically improve the performance of Node servers Sp
  • NODE.JS: THE COMPLETE GUIDE TO BUILD RESTFUL APIS (2018)

    vom 136.78 Punkte ic_school_black_18dp
    Description What is Node.js? Node.js, or Node, is a runtime environment for executing JavaScript code outside of a browser. It is ideal for building highly-scalable, data-intensive backend services (APIs) that power your client’s apps (web or mobile app
  • Stowaway - Multi-hop Proxy Tool For Pentesters

    vom 135.42 Punkte ic_school_black_18dp
    Stowaway is Multi-hop proxy tool for security researchers and pentestersUsers can easily proxy their network traffic to intranet nodes (multi-layer)PS: The files under demo folder are Stowaway's beta version,it's still functional, you can check the de
  • Upgraded graphics card RX 470 4GiB -> RX 580 8GiB, available system ram reduced from 16 GiB to 8 GiB

    vom 128.97 Punkte ic_school_black_18dp
    As the title reads. The motherboard is a Gigabyte GA-990X-Gaming SLI. I already had to enable IOMMU and pass to the kernel the option iommu=pt to get the integrated NIC and USB ports to work. I upgraded the graphics card to one with bigger VRAM, fr
  • Microsoft Azure portal May 2019 update

    vom 119.19 Punkte ic_school_black_18dp
    This month is packed with updates on the Azure portal, including enhancements to the user experience, resource configuration, management tools and more. Sign in to the Azure portal now and see for yourself everything that’s new. Download the Az

Team Security Diskussion über Request up to 2.46.x/2.67.0 on Node.js information disclosure