Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/nodejs/undici
An HTTP/1.1 client, written from scratch for Node.js
https://github.com/nodejs/undici
Low
Ecosystems: npm
Packages: undici
Source: github
Published: 6 months ago
GSA_kwCzR0hTQS0zZzkyLXc4YzUtNzNwcc4AA9rQ
Undici vulnerable to data leak when using response.arrayBuffer()Ecosystems: npm
Packages: undici
Source: github
Published: 6 months ago
Low
Ecosystems: npm
Packages: undici
Source: github
Published: 9 months ago
GSA_kwCzR0hTQS05cXhyLXFqNTQtaDY3Ms4AA6o2
Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrectEcosystems: npm
Packages: undici
Source: github
Published: 9 months ago
Low
Ecosystems: npm
Packages: undici
Source: github
Published: 9 months ago
GSA_kwCzR0hTQS1tNHY4LXdxdnItcDlmN84AA6o1
Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipelineEcosystems: npm
Packages: undici
Source: github
Published: 9 months ago
Low
Ecosystems: npm
Packages: undici
Source: github
Published: 10 months ago
GSA_kwCzR0hTQS0zNzg3LTZwcnYtaDl3M84AA5Vg
Undici proxy-authorization header not cleared on cross-origin redirect in fetchEcosystems: npm
Packages: undici
Source: github
Published: 10 months ago
Moderate
Ecosystems: npm
Packages: undici
Source: github
Published: 10 months ago
GSA_kwCzR0hTQS05ZjI0LWpxaG0tamZjd84AA5Vf
fetch(url) leads to a memory leak in undiciEcosystems: npm
Packages: undici
Source: github
Published: 10 months ago
Low
Ecosystems: npm
Packages: undici
Source: github
Published: about 1 year ago
GSA_kwCzR0hTQS13cXE0LTV3cHYtbXgyZ84AA2eY
Undici's cookie header not cleared on cross-origin redirect in fetchEcosystems: npm
Packages: undici
Source: github
Published: about 1 year ago
Moderate
Ecosystems: npm
Packages: undici
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS01cjlnLXFoNm0tanhmZs4AAxq9
CRLF Injection in Nodejs ‘undici’ via hostEcosystems: npm
Packages: undici
Source: github
Published: almost 2 years ago
High
Ecosystems: npm
Packages: undici
Source: github
Published: almost 2 years ago
GSA_kwCzR0hTQS1yNmNoLW1xZjktcWM5d84AAxq-
Regular Expression Denial of Service in HeadersEcosystems: npm
Packages: undici
Source: github
Published: almost 2 years ago
Moderate
Ecosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS1mNzcyLTY2ZzgtcTVoM84AAuFo
Nodejs ‘undici’ vulnerable to CRLF Injection via Content-TypeEcosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS04cXI0LXhndzYtd21yM84AAuFj
`undici.request` vulnerable to SSRF using absolute URL on `pathname`Ecosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
Low
Ecosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS1xNzY4LXg5bTYtbTlxcM4AAtkI
undici before v5.8.0 vulnerable to uncleared cookies on cross-host / cross-origin redirectEcosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
Moderate
Ecosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS0zY3ZyLTgyMnItcnFjY84AAtkH
undici before v5.8.0 vulnerable to CRLF injection in request headersEcosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
High
Ecosystems: npm
Packages: undici
Source: github
Published: over 2 years ago
GSA_kwCzR0hTQS1wZ3c3LXd4N3ctMnczM84AArtC
ProxyAgent vulnerable to MITMEcosystems: npm
Packages: undici
Source: github
Published: over 2 years ago