Filtered by vendor Buttle Project Subscriptions
Filtered by product Buttle Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-5422 1 Buttle Project 1 Buttle 2024-11-21 N/A
XSS in buttle npm package version 0.2.0 causes execution of attacker-provided code in the victim's browser when an attacker creates an arbitrary file on the server.
CVE-2018-3766 1 Buttle Project 1 Buttle 2024-11-21 7.5 High
Path traversal in buttle module versions <= 0.2.0 allows to read any file in the server.