Tuesday, January 19, 2021
CVE-2020-28481
nist.gov
In: nist.gov
The package socket.io before 2.4.0 are vulnerable to Insecure Defaults due to CORS Misconfiguration. All domains are whitelisted by default. CVE-2020-28481
cyberdetails is a website where the latest vulnerabilities are collected. It collects vulnerabilities from nist, exploit db, microsoft, packetstorm, snyk, rapid7 and cxsecurity sites. A vulnerability database is a platform aimed at collecting, maintaining, and disseminating information about discovered computer security vulnerabilities.
Copyright © 2021 Vulnerability Database | Cyber Details™
thank you Templateism for the design - You should have written the code a little more complicated - Nothing Encrypted anymore