OsVault/npm/url-parse
npm3 critical

url-parse

9 known vulnerabilities · 3 critical · 0 high

CVE-2022-0639MEDIUM

url-parse Incorrectly parses URLs that include an '@'

Published Feb 18, 2022
CVE-2021-27515MEDIUM

Path traversal in url-parse

Published May 6, 2021
CVE-2021-3664MEDIUM

Open redirect in url-parse

Published Aug 10, 2021
CVE-2018-3774CRITICAL

Open Redirect in url-parse

Published Aug 13, 2018
CVE-2020-8124MEDIUM

Improper Validation and Sanitization in url-parse

Published Jan 6, 2022
CVE-2022-0691CRITICAL

url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.

Published Feb 22, 2022
CVE-2022-0686CRITICAL

Authorization Bypass Through User-Controlled Key in url-parse

Published Feb 21, 2022
CVE-2022-0512MEDIUM

Authorization bypass in url-parse

Published Feb 15, 2022
MAL-2022-6822

Malicious code in url-parser-native (npm)

Published Jun 20, 2022
Check your entire dependency tree at onceRun dependency scan →