4 matches found
CVE-2023-26104
All versions of the package lite-web-server are vulnerable to Denial of Service DoS when an attacker sends an HTTP request and includes control characters that the decodeURI function is unable to parse...
CVE-2023-26104
All versions of the package lite-web-server are vulnerable to Denial of Service DoS when an attacker sends an HTTP request and includes control characters that the decodeURI function is unable to parse...
CVE-2023-26104
The CVE-2023-26104 entry concerns lite-web-server. Affected: lite-web-server library; Root cause: DoS triggered when an HTTP request includes control characters that decodeURI() cannot parse, leading to an availability impact (DoS). Exploitation details are documented in Snyk (PoC) and GitHub ref...
CVE-2023-26104
All versions of the package lite-web-server are vulnerable to Denial of Service DoS when an attacker sends an HTTP request and includes control characters that the decodeURI function is unable to parse...