CVE-2025-9288
The CVE-2025-9288 issue is an Improper Input Validation vulnerability in sha.js (node-sha.js) with incomplete type checks that can lead to Input Data Manipulation. Public reports tie the vulnerability to sha.js up to version 2.4.11. Debian advisories (DSA-6002-1, DLA-4302-1, DLA-4291-1) describe ...