← Back

Node Packaged Modules Project

node_packaged_modules_project

1 CVE • 1 product

Products (1)

Click to collapse
Toggle
Node Packaged Modules
node_packaged_modules
1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2013-4116
1Node Packaged Modules Project
1Node Packaged Modules
May 6, 2026
Apr 22, 2014
N/A· v4
N/A· v3
3.3 LOW· v2
lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives.