Precios Enterprise

CVE-2022-0639

5.3MEDIUM

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7.

Publicado: 2/17/2022Actualizado: 12/16/2025

Ver en NVD Ver en MITRE

Descripción

Authorization Bypass Through User-Controlled Key in NPM url-parse prior to 1.5.7.

Análisis IAImpulsado por IA

Productos Afectados

url-parse_projecturl-parse

Referencias

https://github.com/unshiftio/url-parse/commit/ef45a1355375a8244063793a19059b4f62fc8788
PatchThird Party Advisory
https://huntr.dev/bounties/83a6bc9a-b542-4a38-82cd-d995a1481155
ExploitIssue TrackingPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/02/msg00030.html
https://github.com/unshiftio/url-parse/commit/ef45a1355375a8244063793a19059b4f62fc8788
PatchThird Party Advisory
https://huntr.dev/bounties/83a6bc9a-b542-4a38-82cd-d995a1481155
ExploitIssue TrackingPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/02/msg00030.html
https://lists.debian.org/debian-lts-announce/2025/12/msg00024.html