@koa/cors@3.4.1 vulnerabilities
Cross-Origin Resource Sharing(CORS) for koa
-
latest version
5.0.0
-
latest non vulnerable version
-
first published
7 years ago
-
latest version published
a year ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the @koa/cors package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@koa/cors is a Cross-Origin Resource Sharing(CORS) for koa Affected versions of this package are vulnerable to Origin Validation Error. An attacker can bypass the Same Origin Policy (SOP) by sending a request from an untrusted origin. This is only exploitable if the middleware is used in a production environment without proper origin restrictions. How to fix Origin Validation Error? Upgrade |
<5.0.0
|