Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-07 | CVE-2018-3719 | Improper Input Validation vulnerability in Mixin-Deep Project Mixin-Deep mixin-deep node module before 1.3.1 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modification of an existing property that will exist on all objects. | 8.8 |
| 2018-06-07 | CVE-2018-3711 | Allocation of Resources Without Limits or Throttling vulnerability in Fastify Fastify node module before 0.38.0 is vulnerable to a denial-of-service attack by sending a request with "Content-Type: application/json" and a very large payload. | 7.5 |
| 2018-06-07 | CVE-2017-16225 | Information Exposure vulnerability in Aegir Project Aegir aegir is a module to help automate JavaScript project management. | 7.5 |
| 2018-06-07 | CVE-2017-16223 | Path Traversal vulnerability in Nodeaaaaa Project Nodeaaaaa nodeaaaaa is a static file server. | 7.5 |
| 2018-06-07 | CVE-2017-16221 | Path Traversal vulnerability in YZT Project YZT 1.4.0 yzt is a simple file server. | 7.5 |
| 2018-06-07 | CVE-2017-16220 | Path Traversal vulnerability in Wind-Mvc Project Wind-Mvc wind-mvc is an mvc framework. | 7.5 |
| 2018-06-07 | CVE-2017-16219 | Path Traversal vulnerability in Yttivy Project Yttivy yttivy is a static file server. | 7.5 |
| 2018-06-07 | CVE-2017-16218 | Path Traversal vulnerability in Dgard8.Lab6 Project Dgard8.Lab6 dgard8.lab6 is a static file server. | 7.5 |
| 2018-06-07 | CVE-2017-16217 | Path Traversal vulnerability in Webrtc-Experiment Fbr-Client fbr-client sends files through sockets via socket.io and webRTC. | 7.5 |
| 2018-06-07 | CVE-2017-16216 | Path Traversal vulnerability in Tencent-Server Project Tencent-Server tencent-server is a simple web server. | 7.5 |