Book-Trading-Club
Book-Trading-Club copied to clipboard
Published
20 hours ago •
mubaidr
mubaidr
WS-2018-0209 Medium Severity Vulnerability detected by WhiteSource
trafficstars
WS-2018-0209 - Medium Severity Vulnerability
Vulnerable Library - morgan-1.8.2.tgz
HTTP request logger middleware for node.js
path: /Book-Trading-Club/node_modules/morgan/package.json
Library home page: https://registry.npmjs.org/morgan/-/morgan-1.8.2.tgz
Dependency Hierarchy:
- :x: morgan-1.8.2.tgz (Vulnerable Library)
Vulnerability Details
morgan before 1.9.1 is vulnerable to code injection when user input is allowed into the filter or combined with a prototype pollution attack.
Publish Date: 2018-11-25
URL: WS-2018-0209
CVSS 2 Score Details (6.8)
Base Score Metrics not available
Step up your Open Source Security Game with WhiteSource here
![mend-bolt-for-github[bot] avatar](https://avatars.githubusercontent.com/in/16809?v=4 "Published by a pub.dev verified publisher"){kind=small}