arborist up to 2.8.1 on npm Project Directory symlink

Virtual Patching
August 31, 2021
9:04 pm

A vulnerability was found in arborist up to 2.8.1 on npm (NPM Package) and classified as critical. This issue affects an unknown function of the component Project Directory Handler. Upgrading to version 2.8.2 eliminates this vulnerability.

Virtual Patching
August 31, 2021
9:04 pm

Contact us to get started

CVE-2022-32405 : SOURCECODESTER PRISON MANAGEMENT SYSTEM 1.0 VIEW_PRISON.PHP ID SQL INJECTION

Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References

Learn more