EPSS
Percentile
70.5%
Versions of url-parse before 1.4.3 returns the wrong hostname which could lead to Open Redirect, Server Side Request Forgery (SSRF), or Bypass Authentication Protocol vulnerabilities.
url-parse
Update to version 1.4.3 or later.