Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-29 | CVE-2016-10570 | Cryptographic Issues vulnerability in Pngcrush-Installer Project Pngcrush-Installer pngcrush-installer is an installer for Pngcrush. | 8.1 |
| 2018-05-29 | CVE-2016-10568 | Cryptographic Issues vulnerability in Geoip-Lite-Country Project Geoip-Lite-Country geoip-lite-country is a stripped down version of geoip-lite, supporting only country lookup. | 8.1 |
| 2018-05-29 | CVE-2016-10567 | Cryptographic Issues vulnerability in Product-Monitor Project Product-Monitor product-monitor is a HTML/JavaScript template for monitoring a product by encouraging product developers to gather all the information about the status of a product, including live monitoring, statistics, endpoints, and test results into one place. | 8.1 |
| 2018-05-29 | CVE-2016-10566 | Cryptographic Issues vulnerability in Install-Nw Project Install-Nw install-nw is a module which quickly and robustly installs and caches NW.js. | 8.1 |
| 2018-05-29 | CVE-2016-10559 | Cryptographic Issues vulnerability in Groupon Selenium-Download selenium-download downloads the latest versions of the selenium standalone server and the chromedriver. | 8.1 |
| 2018-05-29 | CVE-2016-10558 | Cryptographic Issues vulnerability in Aerospike aerospike is an Aerospike add-on module for Node.js. | 8.1 |
| 2018-05-29 | CVE-2016-10556 | SQL Injection vulnerability in Sequelizejs Sequelize sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS In Postgres, SQLite, and Microsoft SQL Server there is an issue where arrays are treated as strings and improperly escaped. | 7.5 |
| 2018-05-29 | CVE-2015-9242 | Improper Input Validation vulnerability in Ecstatic Project Ecstatic Certain input strings when passed to new Date() or Date.parse() in ecstatic node module before 1.4.0 will cause v8 to raise an exception. | 7.5 |
| 2018-05-29 | CVE-2015-9241 | Improper Input Validation vulnerability in Hapijs Hapi Certain input passed into the If-Modified-Since or Last-Modified headers will cause an 'illegal access' exception to be raised. | 7.5 |
| 2018-05-29 | CVE-2015-9240 | Credentials Management vulnerability in Keystonejs Keystone Due to a bug in the the default sign in functionality in the keystone node module before 0.3.16, incomplete email addresses could be matched. | 7.5 |