Morgan Project CVE

Filtered by vendor Morgan Project Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-5413	1 Morgan Project	1 Morgan	2019-10-09	7.5 HIGH	9.8 CRITICAL
An attacker can use the format parameter to inject arbitrary commands in the npm package morgan < 1.9.1.

Vulnerabilities (CVE)