Enhancement: cves/2021/CVE-2021-25864.yaml by mp
parent
5b392b8f2c
commit
0c626f3197
|
@ -4,7 +4,7 @@ info:
|
|||
name: Hue Magic 3.0.0 - Local File Inclusion
|
||||
author: 0x_Akoko
|
||||
severity: high
|
||||
description: Hue Magic 3.0.0 is susceptible to local file inclusion via the res.sendFile API, which is used in file hue-magic.js to fetch an arbitrary file.
|
||||
description: Hue Magic 3.0.0 is susceptible to local file inclusion via the res.sendFile API.
|
||||
reference:
|
||||
- https://github.com/Foddy/node-red-contrib-huemagic/issues/217
|
||||
- https://nvd.nist.gov/vuln/detail/CVE-2021-25864
|
||||
|
|
Loading…
Reference in New Issue