Filtered by vendor Send Project Subscriptions
Filtered by product Send Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-43799 2 Redhat, Send Project 6 Network Observ Optr, Openshift Data Foundation, Openshift Gitops and 3 more 2024-09-20 5 Medium
Send is a library for streaming files from the file system as a http response. Send passes untrusted user input to SendStream.redirect() which executes untrusted code. This issue is patched in send 0.19.0.
CVE-2015-8859 1 Send Project 1 Send 2024-08-06 5.3 Medium
The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors.