Vulnerabilities (CVE)

Filtered by vendor Node Packaged Modules Project Subscribe
Filtered by product Node Packaged Modules
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-4116 1 Node Packaged Modules Project 1 Node Packaged Modules 2024-11-21 3.3 LOW N/A
lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives.