| CVE-2022-0691 |
unknown |
— |
— |
|
|
|
4y ago |
Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.9. |
| CVE-2022-0686 |
unknown |
— |
— |
|
|
|
4y ago |
Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.8. |
| CVE-2022-0639 |
unknown |
— |
— |
|
|
|
4y ago |
Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7. |
| CVE-2022-0512 |
unknown |
— |
— |
|
|
|
4y ago |
Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.6. |
| CVE-2020-8124 |
unknown |
— |
— |
|
|
|
5y ago |
Insufficient validation and sanitization of user input exists in url-parse npm package version 1.4.4 and earlier may allow attacker to bypass security checks. |
| CVE-2021-3664 |
unknown |
— |
— |
|
|
|
5y ago |
url-parse is vulnerable to URL Redirection to Untrusted Site |
| CVE-2021-27515 |
unknown |
— |
— |
|
|
|
5y ago |
url-parse before 1.5.0 mishandles certain uses of backslash such as http:\/ and interprets the URI as a relative path. |
| CVE-2018-3774 |
unknown |
— |
— |
|
|
|
8y ago |
Incorrect parsing in url-parse <1.4.3 returns wrong hostname which leads to multiple vulnerabilities such as SSRF, Open Redirect, Bypass Authentication Protocol. |
