pkg:npm/matrix-appservice-irc

All known vulnerabilities

• HIGH8.8CVE-2022-39203Parsing issue in matrix-org/node-irc leading to room takeovers
  from 0, < 0.35.0
• HIGH8.0CVE-2022-29166Improper handling of multiline messages in node-irc affects matrix-appservice-irc
  from 0, < 0.33.2
• MEDIUM5.6CVE-2022-3971Matrix-appservice-irc vulnerable to sql injection via roomIds argument
  from 0, < 0.36.0
• MEDIUM5.0matrix-appservice-irc IRC command injection via admin commands containing newlines
  from 0, < 1.0.1
• MEDIUM4.3Malicious Matrix homeserver can leak truncated message content of messages it shouldn't have access to
  from 0, < 2.0.1
• MEDIUM4.3Matrix IRC Bridge truncated content of messages can be leaked
  from 0, < 2.0.0
• MEDIUM4.3matrix-appservice-irc vulnerable to IRC mode parameter confusion
  from 0, < 0.35.0
• LOW3.5matrix-appservice-irc events can be crafted to leak parts of targeted messages from other bridged rooms
  from 0, < 1.0.1
• LOW2.7Matrix IRC Bridge allows IRC command injection to own puppeted user
  from 0, < 3.0.4