Html-pages Project Html-pages — known CVE vulnerabilities
Every CVE whose affected-product data names Html-pages Project Html-pages, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-3744 — CVSS 9.8 (critical): The html-pages node module contains a path traversal vulnerabilities that allows an attacker to read any file from the server with cURL.
CVE-2018-16481 — CVSS 6.1 (medium): A XSS vulnerability was found in html-page <=2.1.1 that allows malicious Javascript code to be executed in the user's browser due to the…