Vulnerabilities > URL Parse Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-02-21	CVE-2022-0691	Authorization Bypass Through User-Controlled Key vulnerability in Url-Parse Project Url-Parse Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.9. network low complexity url-parse-project CWE-639 critical	9.8
2022-02-20	CVE-2022-0686	Authorization Bypass Through User-Controlled Key vulnerability in Url-Parse Project Url-Parse Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.8. network low complexity url-parse-project CWE-639 critical	9.1
2022-02-17	CVE-2022-0639	Authorization Bypass Through User-Controlled Key vulnerability in Url-Parse Project Url-Parse Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7. network low complexity url-parse-project CWE-639	5.3
2022-02-14	CVE-2022-0512	Authorization Bypass Through User-Controlled Key vulnerability in Url-Parse Project Url-Parse Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.6. network low complexity url-parse-project CWE-639	5.3
2021-07-26	CVE-2021-3664	Open Redirect vulnerability in Url-Parse Project Url-Parse url-parse is vulnerable to URL Redirection to Untrusted Site network low complexity url-parse-project CWE-601	5.3
2021-02-22	CVE-2021-27515	Unspecified vulnerability in Url-Parse Project Url-Parse url-parse before 1.5.0 mishandles certain uses of backslash such as http:\/ and interprets the URI as a relative path. network low complexity url-parse-project	5.3
2020-02-04	CVE-2020-8124	Improper Input Validation vulnerability in Url-Parse Project Url-Parse Insufficient validation and sanitization of user input exists in url-parse npm package version 1.4.4 and earlier may allow attacker to bypass security checks. network low complexity url-parse-project CWE-20	5.3
2018-08-12	CVE-2018-3774	Server-Side Request Forgery (SSRF) vulnerability in Url-Parse Project Url-Parse Incorrect parsing in url-parse <1.4.3 returns wrong hostname which leads to multiple vulnerabilities such as SSRF, Open Redirect, Bypass Authentication Protocol. network low complexity url-parse-project CWE-918 critical	10.0

Vulnerabilities > URL Parse Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"URL Parse Project"}]}

Vulnerabilities > URL Parse Project