RSS   Vulnerabilities for 'Summit'   RSS

2018-06-04
 
CVE-2017-16020

CWE-94
 

 
Summit is a node web framework. When using the PouchDB driver in the module, Summit 0.1.0 and later allows an attacker to execute arbitrary commands via the collection name.

 


Copyright 2024, cxsecurity.com

 

Back to Top