CVE-2023-26104: Denial of Service vulnerability in lite-web-server
(updated )
All versions of the package lite-web-server is vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.
References
Code Behaviors & Features
Detect and mitigate CVE-2023-26104 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →