Lucene search
K

17 matches found

NVD
NVD
added 2022/09/15 12:15 p.m.45 views

CVE-2022-3224

Misinterpretation of Input in GitHub repository ionicabizau/parse-url prior to 8.1.0...

9.4CVSS0.00586EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/09/15 11:30 a.m.42 views

CVE-2022-3224 Misinterpretation of Input in ionicabizau/parse-url

Misinterpretation of Input in GitHub repository ionicabizau/parse-url prior to 8.1.0...

9.4CVSS6.8AI score0.00586EPSS
Exploits1References2
CVE
CVE
added 2022/09/15 11:30 a.m.74 views

CVE-2022-3224

CVE-2022-3224 concerns the parse-url npm package by ionică Bizău, affected in versions prior to 8.1.0. The root cause is a misinterpretation of input that leads to incorrect parsing of http/https URLs (e.g., misclassifying the URL protocol as ssh and misparsing the hostname). Reported impacts inc...

9.4CVSS6.5AI score0.00586EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/09/15 11:30 a.m.34 views

CVE-2022-3224 Misinterpretation of Input in ionicabizau/parse-url

Misinterpretation of Input in GitHub repository ionicabizau/parse-url prior to 8.1.0...

9.4CVSS7.9AI score0.00586EPSS
Exploits1References4
OSV
OSV
added 2022/09/15 12:0 a.m.16 views

GHSA-J9FQ-VWQV-2FM2 Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url

Server-Side Request Forgery SSRF in GitHub repository ionicabizau/parse-url prior to 8.1.0...

9.1CVSS9.3AI score0.00907EPSS
Exploits1References4
Prion
Prion
added 2022/09/14 11:15 a.m.20 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF in GitHub repository ionicabizau/parse-url prior to 8.1.0...

6.4CVSS9.3AI score0.00907EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/09/14 8:30 a.m.29 views

CVE-2022-2900 Server-Side Request Forgery (SSRF) in ionicabizau/parse-url

Server-Side Request Forgery SSRF in GitHub repository ionicabizau/parse-url prior to 8.1.0...

9.1CVSS9.2AI score0.00907EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/06/28 12:1 a.m.40 views

Server-Side Request Forgery in parse-url

Server-Side Request Forgery SSRF in GitHub repository ionicabizau/parse-url prior to 7.0.0...

9.8CVSS2.9AI score0.01533EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2022/06/28 12:1 a.m.4 views

GHSA-4P35-CFCX-8653 Hostname confusion in parse-url

Exposure of Sensitive Information to an Unauthorized Actor via hostname confusion in GitHub repository ionicabizau/parse-url prior to 6.0.1...

7.5CVSS5.9AI score0.01104EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/06/27 12:10 p.m.40 views

CVE-2022-2216 Server-Side Request Forgery (SSRF) in ionicabizau/parse-url

Server-Side Request Forgery SSRF in GitHub repository ionicabizau/parse-url prior to 7.0.0...

9.4CVSS9.8AI score0.01533EPSS
Exploits1References2
OSV
OSV
added 2022/06/27 12:10 p.m.23 views

CVE-2022-2216 Server-Side Request Forgery (SSRF) in ionicabizau/parse-url

Server-Side Request Forgery SSRF in GitHub repository ionicabizau/parse-url prior to 7.0.0...

9.4CVSS9.3AI score0.01533EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/06/27 12:10 p.m.30 views

CVE-2022-2218 Cross-site Scripting (XSS) - Stored in ionicabizau/parse-url

Cross-site Scripting XSS - Stored in GitHub repository ionicabizau/parse-url prior to 7.0.0...

9.1CVSS6.2AI score0.00857EPSS
Exploits1References2
OSV
OSV
added 2022/06/27 12:10 p.m.20 views

CVE-2022-2218 Cross-site Scripting (XSS) - Stored in ionicabizau/parse-url

Cross-site Scripting XSS - Stored in GitHub repository ionicabizau/parse-url prior to 7.0.0...

9.1CVSS8.2AI score0.00857EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/06/27 11:15 a.m.4 views

CVE-2022-0722

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository ionicabizau/parse-url prior to 7.0.0...

7.5CVSS5.5AI score0.01104EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/06/27 11:15 a.m.2 views

CVE-2022-2217

Cross-site Scripting XSS - Generic in GitHub repository ionicabizau/parse-url prior to 7.0.0...

9.1CVSS6.9AI score0.00955EPSS
Exploits1References3
NVD
NVD
added 2022/06/27 11:15 a.m.25 views

CVE-2022-2217

Cross-site Scripting XSS - Generic in GitHub repository ionicabizau/parse-url prior to 7.0.0...

9.1CVSS0.00955EPSS
Exploits1References2
CVE
CVE
added 2022/06/27 10:15 a.m.97 views

CVE-2022-2217

The CVE-2022-2217 issue is a cross-site scripting (XSS) vulnerability in the npm package parse-url (GitHub: ionicabizau/parse-url) affecting versions prior to 7.0.0 . The root cause is the ability to inject or execute malicious JavaScript on webpages produced by the affected package through craft...

9.1CVSS6.2AI score0.00955EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder