1. CVE-Search
  2. CVE-2015-8859
ID CVE-2015-8859
Summary The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:send_project:send:0.0.2:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.0.2:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.0.3:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.0.3:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.0.4:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.0.4:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.1.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.1.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.1.1:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.1.1:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.1.2:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.1.2:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.1.3:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.1.3:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.1.4:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.1.4:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.2.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.2.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.3.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.3.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.4.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.4.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.4.1:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.4.1:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.4.2:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.4.2:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.4.3:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.4.3:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.5.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.5.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.6.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.6.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.7.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.7.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.7.1:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.7.1:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.7.2:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.7.2:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.7.3:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.7.3:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.7.4:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.7.4:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.8.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.8.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.8.1:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.8.1:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.8.2:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.8.2:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.8.3:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.8.3:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.8.4:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.8.4:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.8.5:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.8.5:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.9.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.9.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.9.1:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.9.1:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.9.2:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.9.2:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.9.3:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.9.3:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.10.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.10.0:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.10.1:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.10.1:*:*:*:*:node.js:*:*
  • cpe:2.3:a:send_project:send:0.11.0:*:*:*:*:node.js:*:*
    cpe:2.3:a:send_project:send:0.11.0:*:*:*:*:node.js:*:*
CVSS
Base: 5.0 (as of 12-09-2023 - 19:42)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
bid 96435
confirm https://nodesecurity.io/advisories/56
mlist [oss-security] 20160420 various vulnerabilities in Node.js packages
Last major update 12-09-2023 - 19:42
Published 23-01-2017 - 21:59
Last modified 12-09-2023 - 19:42
Back to Top