npm
follow-redirects
5 known vulnerabilities · 0 critical · 1 high
CVE-2023-26159HIGH
Follow Redirects improperly handles URLs in the url.parse() function
Published Jan 2, 2024
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects
Published Feb 10, 2022
GHSA-r4q5-vmmm-2653
follow-redirects leaks Custom Authentication Headers to Cross-Domain Redirect Targets
Published Apr 14, 2026
CVE-2024-28849MEDIUM
follow-redirects' Proxy-Authorization header kept across hosts
Published Mar 14, 2024
Check your entire dependency tree at onceRun dependency scan →