VYPR
Moderate severityNVD Advisory· Published Feb 21, 2022· Updated Aug 2, 2024

Authorization Bypass Through User-Controlled Key in unshiftio/url-parse

CVE-2022-0691

Description

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.9.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
url-parsenpm
>= 0.1.0, < 1.5.91.5.9

Affected products

2
  • ghsa-coords
    Range: >= 0.1.0, < 1.5.9
  • unshiftio/unshiftio/url-parsev5
    Range: unspecified

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.