npm package
sails-hook-sockets
pkg:npm/sails-hook-sockets
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-21036 | — | < 1.5.5 | 1.5.5 | Jul 21, 2020 | Sails.js before v1.0.0-46 allows attackers to cause a denial of service with a single request because there is no error handler in sails-hook-sockets to handle an empty pathname in a WebSocket request. |
- CVE-2018-21036Jul 21, 2020affected < 1.5.5fixed 1.5.5
Sails.js before v1.0.0-46 allows attackers to cause a denial of service with a single request because there is no error handler in sails-hook-sockets to handle an empty pathname in a WebSocket request.