kujirahand/nadesiko3

kujirahand/nadesiko3

Releases177

Frequency2 weeks 3 days

Last Release 29 days ago

Stars303

Japanese Programming Language Nadesiko v3 (JavaScript/TypeScript)

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-42496 ↗	Dec 5, 2022Monday, 5 December 2022, 04:15	9.8 CRITICAL	—
OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product.
CVE-2022-41642 ↗	Dec 5, 2022Monday, 5 December 2022, 04:15	9.8 CRITICAL	—
OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product.
CVE-2022-41777 ↗	Dec 5, 2022Monday, 5 December 2022, 04:15	7.5 HIGH	—
Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to inject an invalid value to decodeURIComponent of nako3edit, which may lead the server to crash.