OsVault/npm/@sync-in/server
npm

@sync-in/server

3 known vulnerabilities · 0 critical · 0 high

GHSA-43fj-qp3h-hrh5

Sync-in Server has Username Enumeration via Timing Attack

Published Apr 15, 2026
CVE-2025-67438

Sync-in Server has a stored cross-site scripting (XSS) vulnerability

Published Feb 20, 2026
GHSA-q4x5-8cj6-52wg

Sync-in Server: SSRF protection bypass via IPv4-mapped IPv6 addresses in regExpPrivateIP

Published Jun 5, 2026
Check your entire dependency tree at onceRun dependency scan →