Known Vulnerabilities for M-server by Npmjs
Listed below are 10 of the newest known vulnerabilities associated with "M-server" by "Npmjs".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-56446 json | MISP allowed a site administrator to configure an arbitrary filesystem path for the NDJSON error log used by JsonLogTool. Bec... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-56422 json | Multiple MISP core controllers and model capture paths accepted client-controlled request fields such as primary keys (id) an... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-56348 json | n8n before 2.20.0 contains a credential exfiltration vulnerability in the POST /rest/dynamic-node-parameters/options endpoint... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-56346 json | AVideo through version 25.0 contains an authentication bypass vulnerability in the decryptMessage.json.php endpoint that allo... | Not Provided | 2026-06-20 | 2026-06-20 |
| CVE-2026-56342 json | AVideo through version 27.0 contains a server-side request forgery vulnerability in plugin/Live/test.php that allows authenti... | Not Provided | 2026-06-20 | 2026-06-22 |
| CVE-2026-56326 json | Nuxt versions 4.0.0 before 4.4.7 and 3.x before 3.21.7 contain a server-side open redirect vulnerability in navigateTo that f... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-56280 json | Cap-go before 12.128.2 contains a privilege inversion vulnerability in GET /build/logs/:jobId that allows read-only API key h... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-56266 json | Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md, and /llm endpoi... | Not Provided | 2026-06-22 | 2026-06-22 |
| CVE-2026-56265 json | Crawl4AI before 0.8.7 contains an authentication bypass vulnerability due to a hardcoded default JWT signing key in the Docke... | Not Provided | 2026-06-21 | 2026-06-22 |
| CVE-2026-56227 json | Capgo before 12.128.2 contains a server-side request forgery vulnerability in webhook URL validation that allows loopback and... | Not Provided | 2026-06-20 | 2026-06-22 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Npmjs | M-server | 1.4.2 | |||
| Application | Npmjs | M-server | 1.4.1 | |||
| Application | Npmjs | M-server | 1.4.0 | |||
| Application | Npmjs | M-server | 1.3.4 | |||
| Application | Npmjs | M-server | 1.3.3 | |||
| Application | Npmjs | M-server | 1.3.2 | |||
| Application | Npmjs | M-server | 1.3.1 | |||
| Application | Npmjs | M-server | 1.3.0 | |||
| Application | Npmjs | M-server | 1.2.1 | |||
| Application | Npmjs | M-server | 1.2.0 | |||
| Application | Npmjs | M-server | 1.1.8 | |||
| Application | Npmjs | M-server | 1.1.7 | |||
| Application | Npmjs | M-server | 1.1.4 | |||
| Application | Npmjs | M-server | 1.0.4 | |||
| Application | Npmjs | M-server | 1.0.3 | |||
| Application | Npmjs | M-server | 1.0.2 | |||
| Application | Npmjs | M-server | 1.0.1 | |||
| Application | Npmjs | M-server | 1.0.0 | |||
| Application | Npmjs | M-server | 0.0.2 | |||
| Application | Npmjs | M-server | 0.0.1 |