Vulnerabilities > Sailsjs > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-12 | CVE-2022-27262 | Unrestricted Upload of File with Dangerous Type vulnerability in Sailsjs Skipper 0.9.1 An arbitrary file upload vulnerability in the file upload module of Skipper v0.9.1 allows attackers to execute arbitrary code via a crafted file. | 9.8 |
| 2022-03-17 | CVE-2021-44908 | Unspecified vulnerability in Sailsjs Sails SailsJS Sails.js <=1.4.0 is vulnerable to Prototype Pollution via controller/load-action-modules.js, function loadActionModules(). | 9.8 |