Socket.io-file <= 2.0.31 - Improper Input Validation in File Upload by Thomas Sermpinis The author of this research works as a member of Auxilium Cyber Security team. Date: 18/05/2020 CVE-ID: – Versions: <= 2.0.31 Package URL: https://www.npmjs.com/package/socket.io-file Tested on: node v10.19.0, Socket.io-file v2.0.31, socket.io v2.3.0 During one of my penetration tests....
Author
Latest Articles
- BlogDecember 28, 2022Cybersecurity in Education: What Parents, Teachers, and Students Should Know in 2023
- BlogDecember 15, 2022Remembering Leonard Jacobs
- BlogSeptember 30, 2022VPN Security: A Pentester's Guide to VPN Vulnerabilities
- BlogAugust 9, 2022AppSec Tales II | Sign-in
Subscribe
Login
0 Comments