Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2026-6322
- EPSS 0.04%
- Veröffentlicht 05.05.2026 11:16:33
- Zuletzt bearbeitet 12.05.2026 19:11:31
fast-uri normalize() decoded percent-encoded authority delimiters inside the host component and then re-emitted them as raw delimiters during serialization. A host that combined an allowed domain, an encoded at-sign, and a different domain was re-emi...
7.5
CVE-2026-6321
- EPSS 0.04%
- Veröffentlicht 04.05.2026 19:31:57
- Zuletzt bearbeitet 12.05.2026 18:54:46
fast-uri decoded percent-encoded path separators and dot segments before applying dot-segment removal in its normalize() and equal() functions. Encoded path data was treated like real slashes and parent-directory references, so distinct URIs could co...
1