Known Vulnerabilities for Normalize-url by Normalize-url Project
Listed below are 1 of the newest known vulnerabilities associated with "Normalize-url" by "Normalize-url Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-41059 json | OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. Versions 7.5.0 through 7.15.1 have a con... | Not Provided | 2026-04-22 | 2026-04-22 |
| CVE-2026-33808 json | Impact@fastify/express v4.0.4 and earlier fails to normalize URLs before passing them to Express middleware when Fastify rout... | Not Provided | 2026-04-15 | 2026-04-15 |
| CVE-2026-33691 json | The OWASP core rule set (CRS) is a set of generic attack detection rules for use with compatible web application firewalls. P... | Not Provided | 2026-04-02 | 2026-04-18 |
| CVE-2026-29870 json | A directory traversal vulnerability in the agentic-context-engine project versions up to 0.7.1 allows arbitrary file writes v... | Not Provided | 2026-03-31 | 2026-03-31 |
| CVE-2026-23941 json | Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in Erlang OTP (inets httpd module) allo... | Not Provided | 2026-03-13 | 2026-04-06 |
| CVE-2021-33502 json | The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression de... | 7.5 - HIGH | 2021-05-24 | 2023-08-08 |