Package impact
npm / webpack-dev-server
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-6402 | medium | 6.5 | 6.5 | 23d ago | webpack-dev-server vulnerable to cross-origin source code exposure on non-HTTPS origins | |||
| CVE-2025-30360 | unknown | — | — | 1y ago | webpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browser | |||
| CVE-2025-30359 | unknown | — | — | 1y ago | webpack-dev-server users' source code may be stolen when they access a malicious web site | |||
| CVE-2018-14732 | unknown | — | — | 8y ago | Missing Origin Validation in webpack-dev-server |