node-forge is vulnerable to URL redirection. The use of an insecure URL parsing in forge.util.parseUrl()
(and forge.http.parseUrl
alias) allows a URL redirection to malicious site.
CPE | Name | Operator | Version |
---|---|---|---|
node-forge | le | 0.10.0 | |
node-forge | le | 0.10.0 | |
node-forge | le | 0.10.0 | |
node-forge | le | 0.10.0 |