Url-parse Security Vulnerabilities and Issues — Url-parse CVE List

Lucene search

Url-parse ProjectUrl-parse

3 matches found

CVE•added 2021/02/22 12:15 a.m.•111 views

CVE-2021-27515

url-parse before 1.5.0 mishandles certain uses of backslash such as http:/ and interprets the URI as a relative path.

5.3CVSS5.4AI score0.00188EPSS

CVE•added 2020/02/04 8:15 p.m.•101 views

CVE-2020-8124

Insufficient validation and sanitization of user input exists in url-parse npm package version 1.4.4 and earlier may allow attacker to bypass security checks.

5.3CVSS5.4AI score0.00055EPSS

CVE•added 2021/07/26 12:15 p.m.•90 views

CVE-2021-3664

url-parse is vulnerable to URL Redirection to Untrusted Site

5.3CVSS5.4AI score0.00325EPSS