@sveltejs/adapter-node@2.1.0 vulnerabilities

Adapter for SvelteKit apps that generates a standalone Node server

Direct Vulnerabilities

Known vulnerabilities in the @sveltejs/adapter-node package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Denial of Service (DoS)

@sveltejs/adapter-node is an Adapter for SvelteKit apps that generates a standalone Node server

Affected versions of this package are vulnerable to Denial of Service (DoS) when sending a GET or HEAD request with a body, which is not supported by the HTTP specification. An attacker can cause the application to crash by sending such a request.

How to fix Denial of Service (DoS)?

Upgrade @sveltejs/adapter-node to version 2.1.2, 3.0.3, 4.0.1 or higher.

>=2.0.0 <2.1.2 >=3.0.0 <3.0.3 >=4.0.0 <4.0.1