MidnightBSD

Advisories for lite-server_project

CVE-2022-25940

All versions of package lite-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.

Products Affected

Vendor Product Version
lite-server_project lite-server -