Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Ansi Up Project Subscribe
Filtered by product Ansi Up
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-3377 1 Ansi Up Project 1 Ansi Up 2021-03-09 4.3 MEDIUM 6.1 MEDIUM
The npm package ansi_up converts ANSI escape codes into HTML. In ansi_up v4, ANSI escape codes can be used to create HTML hyperlinks. Due to insufficient URL sanitization, this feature is affected by a cross-site scripting (XSS) vulnerability. This issue is fixed in v5.0.0.