Connect CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2018-3717	1 Sencha	1 Connect	2024-11-21	5.4 Medium
connect node module before 2.14.0 suffers from a Cross-Site Scripting (XSS) vulnerability due to a lack of validation of file in directory.js middleware.
CVE-2013-7371	2 Debian, Sencha	2 Debian Linux, Connect	2024-11-21	6.1 Medium
node-connects before 2.8.2 has cross site scripting in Sencha Labs Connect middleware (vulnerability due to incomplete fix for CVE-2013-7370)
CVE-2013-7370	4 Debian, Opensuse, Redhat and 1 more	4 Debian Linux, Opensuse, Openshift and 1 more	2024-11-21	6.1 Medium
node-connect before 2.8.1 has XSS in the Sencha Labs Connect middleware
CVE-2013-4691	1 Sencha	1 Connect	2024-11-21	6.1 Medium
Sencha Labs Connect has XSS with connect.methodOverride()

Page 1 of 1.