0.001 Low
EPSS
Percentile
51.1%
parse-url is vulnerable to information disclosure. The vulnerability exists due to url-parse incorrectly parsing the href of the url, allowing for unauthorized actors to receive data meant for another host.
github.com/ionicabizau/parse-url/commit/21c72ab9412228eea753e2abc48f8962707b1fe3
huntr.dev/bounties/2490ef6d-5577-4714-a4dd-9608251b4226
huntr.dev/bounties/2490ef6d-5577-4714-a4dd-9608251b4226/