rendertron-middleware@0.1.1 vulnerabilities
Express middleware for the rendertron service.
-
latest version
0.1.5
-
latest non vulnerable version
-
first published
7 years ago
-
latest version published
6 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the rendertron-middleware package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
rendertron-middleware is an Express middleware for Rendertron. Affected versions of this package are vulnerable to Cross-site Scripting (XSS)
via the How to fix Cross-site Scripting (XSS)? Upgrade rendertron-middleware to version 0.1.3 or higher. |
<0.1.3
|
rendertron-middleware is an Express middleware for Rendertron. Affected versions of this package are vulnerable to Denial of Service (DoS).
It included an How to fix Denial of Service (DoS)? Upgrade rendertron-middleware to version 0.1.3 or higher. |
<0.1.3
|
rendertron-middleware is an Express middleware for Rendertron Affected versions of this package are vulnerable to Arbitrary File Read. An alternative protocols such as How to fix Arbitrary File Read? Upgrade |
<0.1.3
|
rendertron-middleware is an Express middleware for Rendertron Affected versions of this package are vulnerable to Information Exposure. Installed packages are exposed by node_modules in Rendertron, allowed remote attackers to read absolute paths on the server by examining the How to fix Information Exposure? Upgrade |
<0.1.3
|