Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Curling Project Subscribe
Filtered by product Curling
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10789 1 Curling Project 1 Curling 2020-02-07 10.0 HIGH 9.8 CRITICAL
All versions of curling.js are vulnerable to Command Injection via the run function. The command argument can be controlled by users without any sanitization.