Curling Project Curling — known CVE vulnerabilities
Every CVE whose affected-product data names Curling Project Curling, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2019-10789 — CVSS 9.8 (critical): All versions of curling.js are vulnerable to Command Injection via the run function. The command argument can be controlled by users…