Elbert (Sangyoup) Bae

icon indicating a website link https://portfolio.bertcode.com/

icon location Burnaby, BC icon location Fullstack Web Developer. Love working with people and programs and hope to continue learning how to create tools to make people's lives better.

Results 1 issues of Elbert (Sangyoup) Bae

CVE-2023-42282 NPM package "ip" vulnerability

3 comment

Node Alpine 18.19-alpine3.19 and below have the "ip" package vulnerability. [NIST issue link](https://nvd.nist.gov/vuln/detail/CVE-2023-42282) > The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as...