VYPR

npm package

trailing-slash

pkg:npm/trailing-slash

Vulnerabilities (1)

  • CVE-2021-23387May 24, 2021
    affected < 2.0.1fixed 2.0.1

    The package trailing-slash before 2.0.1 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker.example/). The vulnerable code is in index.js::createTrailing(), as the web serv