rp.pl 8 packages
Last scanned on Oct 27 at 06:34 PM
url-parse 1.5.1VulnerableOutdated
Small footprint URL parser that works seamlessly across Node.js and browser environments
License
MIT
Footprint
3 KB
Vulnerabilities
ModerateGHSA-jf5r-8hm2-f872
url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.
Affected versions >=0 <1.5.9
ModerateGHSA-8v38-pw62-9cw2
url-parse Incorrectly parses URLs that include an '@'
Affected versions >=0 <1.5.7
CriticalGHSA-hgjh-723h-mx2j
Authorization Bypass Through User-Controlled Key in url-parse
Affected versions >=0 <1.5.8
Matched Modules
Version distribution in production
206
1.5.10
167
1.5.9
50
1.5.3
47
1.4.6
47
1.4.7
23
1.5.1
Also used on 395 websites
base64-js 1.3.0 - 1.5.1
Base64 encoding/decoding in pure JS
requires-port 1.0.0
Check if a protocol requires a certain port number to be added to an URL.
querystringify 2.2.0
Querystringify - Small, simple but powerful query string parser.
web-vitals 3.0.0 - 3.0.4Outdated
Easily measure performance metrics in JavaScript
crypto-browserify 1.0.9 - 2.0.0Outdated
implementation of crypto for the browser
+2
local-storage 2.0.0
A simplified localStorage API that just works
Popular search queries
Popular packages
react
React is a JavaScript library for building user interfaces.
+6 634 websites
core-js
Standard library
+10 238 websites
es5-ext
ECMAScript extensions and shims
+10 229 websites
@babel/runtime
babel's modular runtime helpers
+8 352 websites
lodash
Lodash modular utilities.
+4 826 websites
axios
Promise based HTTP client for the browser and node.js
+4 742 websites