Pricing Enterprise

CVE-2022-0512

5.3MEDIUM

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.6.

Published: 2/14/2022Updated: 11/21/2024

View on NVD View on MITRE

Description

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.6.

AI AnalysisPowered by AI

Affected Products

url-parse_projecturl-parse

References

https://github.com/unshiftio/url-parse/commit/9be7ee88afd2bb04e4d5a1a8da9a389ac13f8c40
PatchThird Party Advisory
https://huntr.dev/bounties/6d1bc51f-1876-4f5b-a2c2-734e09e8e05b
ExploitPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/02/msg00030.html
https://github.com/unshiftio/url-parse/commit/9be7ee88afd2bb04e4d5a1a8da9a389ac13f8c40
PatchThird Party Advisory
https://huntr.dev/bounties/6d1bc51f-1876-4f5b-a2c2-734e09e8e05b
ExploitPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/02/msg00030.html