VYPR

npm package

@haxtheweb/open-apis

pkg:npm/%40haxtheweb/open-apis

Vulnerabilities (1)

  • CVE-2025-48996MedJun 2, 2025
    affected <= 10.0.1

    HAX open-apis provides microservice apis for HAX webcomponents repo that are shared infrastructure calls. An unauthenticated information disclosure vulnerability exists in the Penn State University deployment of the HAX content management system via the `haxPsuUsage` API endpoint