CVE-2013-7371
N/A
N/A
Summary
node-connects before 2.8.2 has cross site scripting in Sencha Labs Connect middleware (vulnerability due to incomplete fix for CVE-2013-7370)
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| node-connect | node-connect | < 2.8.2 | affected |
Weaknesses
- in the Sencha Labs Connect middleware
ADP Enrichment
CVE Program Container
Additional References
- https://nodesecurity.io/advisories/methodOverride_Middleware_Reflected_Cross-Site_Scripting
- http://www.openwall.com/lists/oss-security/2014/05/13/1
- https://security-tracker.debian.org/tracker/CVE-2013-7371
- https://access.redhat.com/security/cve/cve-2013-7371
- http://www.openwall.com/lists/oss-security/2014/04/21/2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92710
References
- https://nodesecurity.io/advisories/methodOverride_Middleware_Reflected_Cross-Site_Scripting
- http://www.openwall.com/lists/oss-security/2014/05/13/1
- https://security-tracker.debian.org/tracker/CVE-2013-7371
- https://access.redhat.com/security/cve/cve-2013-7371
- http://www.openwall.com/lists/oss-security/2014/04/21/2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92710
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.