7 matches found
[SECURITY] [DLA 3336-1] node-url-parse security update
Debian LTS Advisory DLA-3336-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin February 23, 2023 https://wiki.debian.org/LTS Package : node-url-parse Version : 1.2.0-2+deb10u2 CVE ID : CVE-2021-3664 CVE-2021-27515 CVE-2022-0512 CVE-2022-0639 CVE-2022-0686...
Debian: Security Advisory (DLA-3336-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-3664
An input validation flaw was found in the nodejs url-parse library, which incorrectly parses a URL that contains backslashes. This flaw allows an attacker to specify a relative URL and cause the browser to redirect to a malicious website. The highest threat from this vulnerability is to integrity...
CVE-2021-3664
creationtimestamp| type| source ---|---|--- 2021-07-26 16:11:17+00:00| seen| https://t.me/cibsecurity/26476...
CVE-2021-3664 Open Redirect in unshiftio/url-parse
url-parse is vulnerable to URL Redirection to Untrusted Site...
CVE-2021-3664
url-parse is vulnerable to URL Redirection to Untrusted Site...
CVE-2021-3664
CVE-2021-3664 affects the url-parse library and enables a URL Redirection to Untrusted Site (Open Redirect) via its URL parsing logic. According to the connected document, the vulnerability is rooted in the url-parse component and has a CVSS v3.1 base score of 5.3 with vector (AV:N/AC:L/PR:N/UI:N...