node-axios

Direct Vulnerabilities

Known vulnerabilities in the node-axios package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
L Allocation of Resources Without Limits or Throttling	<1.15.2-1
C Improperly Controlled Modification of Dynamically-Determined Object Attributes	<1.15.2-1
M Improper Authentication	<1.15.2-1
L Permissive Whitelist	<1.15.2-1
L CRLF Injection	<1.15.2-1
H Uncontrolled Recursion	<1.15.2-1
L HTTP Response Splitting	<1.15.2-1
L Allocation of Resources Without Limits or Throttling	<1.15.2-1
C Permissive Whitelist	<1.15.2-1
H Server-Side Request Forgery (SSRF)	<1.15.2-1
L Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	<1.15.2-1
L Improper Encoding or Escaping of Output	<1.15.2-1
C Unintended Proxy or Intermediary ('Confused Deputy')	<1.15.0-1
M HTTP Response Splitting	<1.15.0-1
L Resource Exhaustion	<1.13.2+dfsg-1
L Improper Check for Unusual or Exceptional Conditions	<1.14.0+dfsg-1
L Allocation of Resources Without Limits or Throttling	<1.12.1+dfsg-1
M Server-Side Request Forgery (SSRF)	<1.8.4+dfsg-1
H Server-Side Request Forgery (SSRF)	<1.7.4+dfsg-1
C CVE-2024-57965	<1.7.9+dfsg-1
H Insufficient Comparison	<0.21.3+dfsg-1
H Improper Input Validation	<0.17.1+dfsg-2
M Cross-site Request Forgery (CSRF)	<1.6.2+dfsg-1
M Server-Side Request Forgery (SSRF)	<0.21.1+dfsg-1