Vulnerabilities > URL Parse Project > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-21 | CVE-2022-0691 | Unspecified vulnerability in Url-Parse Project Url-Parse Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.9. | 9.8 |
| 2022-02-20 | CVE-2022-0686 | Unspecified vulnerability in Url-Parse Project Url-Parse Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.8. | 9.1 |
| 2018-08-12 | CVE-2018-3774 | Server-Side Request Forgery (SSRF) vulnerability in Url-Parse Project Url-Parse Incorrect parsing in url-parse <1.4.3 returns wrong hostname which leads to multiple vulnerabilities such as SSRF, Open Redirect, Bypass Authentication Protocol. | 10.0 |