| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-41213 | @node-oauth/oauth2-server: PKCE code_verifier ABNF not enforced in token exchange allows brute-force redemption of intercepted authorization codes | node-oauth | node-oauth2-server | Medium | 5.9 | 2026-04-23 18:33:42 | Deep Dive |
| CVE-2026-29087 | @hono/node-server: Authorization bypass for protected static paths via encoded slashes in Serve Static Middleware | honojs | node-server | High | 7.5 | 2026-03-06 17:03:30 | Deep Dive |
| CVE-2024-32652 | @hono/node-server contains Denial of Service risk when receiving Host header that cannot be parsed | honojs | node-server | High | 7.5 | 2024-04-19 18:29:43 | Deep Dive |
| CVE-2024-27922 | HTTP Handling Vulnerability in the Bare server | tomphttp | bare-server-node | Critical | 9.8 | 2024-03-06 20:33:58 | Deep Dive |
| CVE-2024-23340 | @hono/node-server can't handle "double dots" in URL | honojs | node-server | Medium | 5.3 | 2024-01-22 23:00:35 | Deep Dive |
| CVE-2021-23797 | Directory Traversal | - | http-server-node | High | 7.5 | 2021-12-17 20:05:12 | Deep Dive |
| CVE-2020-7205 | 多款HPE产品代码注入漏洞 | - | HP Intelligent Provisioning | 中危 | - | 2020-07-30 17:27:10 | Deep Dive |
| CVE-2018-3713 | angular-http-server 路径遍历漏洞 | HackerOne | angular-http-server node module | 中危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2018-3726 | crud-file-server node module 跨站脚本漏洞 | HackerOne | crud-file-server node module | 中危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2018-3724 | hekto node模块路径遍历漏洞 | HackerOne | general-file-server node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2017-16216 | tencent-server 路径遍历漏洞 | HackerOne | tencent-server node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2017-16165 | calmquist.static-server 路径遍历漏洞 | HackerOne | calmquist.static-server node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2017-16152 | static-html-server 路径遍历漏洞 | HackerOne | static-html-server node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2017-16147 | shit-server 路径遍历漏洞 | HackerOne | shit-server node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2017-16124 | node-server-forfront 路径遍历漏洞 | HackerOne | node-server-forfront node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2017-16090 | fsk-server 路径遍历漏洞 | HackerOne | fsk-server node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |
| CVE-2017-16038 | f2e-server 路径遍历漏洞 | HackerOne | f2e-server node module | 高危 | - | 2018-06-04 19:00:00 | Deep Dive |
| CVE-2017-16036 | badjs-sourcemap-server 路径遍历漏洞 | HackerOne | badjs-sourcemap-server node module | 高危 | - | 2018-06-04 19:00:00 | Deep Dive |
| CVE-2017-16035 | hubl-server模块安全漏洞 | HackerOne | hubl-server node module | 高危 | - | 2018-06-04 19:00:00 | Deep Dive |
| CVE-2014-10066 | fancy-server 路径遍历漏洞 | HackerOne | fancy-server node module | 高危 | - | 2018-05-31 20:00:00 | Deep Dive |