http-proxy-middleware

Denial of service in http-proxy-middleware

http-proxy-middleware allows fixRequestBody to proceed even if bodyParser has failed

http-proxy-middleware can call writeBody twice because "else if" is not used

http-proxy-middleware `router` host+path substring matching allows Host-header-driven backend routing bypass

http-proxy-middleware: multipart/form-data field injection via unescaped CRLF in `fixRequestBody`

Malicious code in paysafe-gpf-as-http-proxy-middleware-body-replace (npm)