Serialize-to-js For Node.js 'deserialize()' Function Arbitrary Code Execution Vulnerability

Bugtraq ID: 96223
Class: Design Error
CVE: CVE-2017-5954
Remote: Yes
Local: No
Published: Feb 10 2017 12:00AM
Updated: Mar 07 2017 04:02AM
Credit: ajinabraham.
Vulnerable: commenthol serialize-to-js 0.5
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus