Vulnerabilities > Sailsjs
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-27 | CVE-2023-38504 | Unspecified vulnerability in Sailsjs Sails Sails is a realtime MVC Framework for Node.js. | 7.5 |
| 2022-04-12 | CVE-2022-27262 | Unrestricted Upload of File with Dangerous Type vulnerability in Sailsjs Skipper 0.9.1 An arbitrary file upload vulnerability in the file upload module of Skipper v0.9.1 allows attackers to execute arbitrary code via a crafted file. | 7.5 |
| 2022-03-17 | CVE-2021-44908 | Unspecified vulnerability in Sailsjs Sails SailsJS Sails.js <=1.4.0 is vulnerable to Prototype Pollution via controller/load-action-modules.js, function loadActionModules(). | 7.5 |
| 2020-07-21 | CVE-2018-21036 | Improper Input Validation vulnerability in Sailsjs Sails Sails.js before v1.0.0-46 allows attackers to cause a denial of service with a single request because there is no error handler in sails-hook-sockets to handle an empty pathname in a WebSocket request. | 5.0 |
| 2018-05-31 | CVE-2016-10549 | Cross-site Scripting vulnerability in Sailsjs Sails Sails is an MVC style framework for building realtime web applications. | 2.1 |