@fedify/fedify Security Advisories - Npm | Ecosyste.ms: Advisories

@fedify/fedify

An ActivityPub server framework

View on github.com · View on npmjs.org

Security Advisories for @fedify/fedify in npm

High

6 days ago

Fedify has an LD-Signature Bypass via JSON-LD Named-Graph Restructuring GSA_kwCzR0hTQS05cmZnLXY4ZzktOTM2N84ABXa2

npm @fedify/fedify

High

about 2 months ago

Fedify affected by resource exhaustion caused by unbounded redirect following during remote key/document resolution GSA_kwCzR0hTQS1nbTltLWd3YzQtaHdncM4ABU1p

npm @fedify/fedify, @fedify/vocab-runtime

High

5 months ago

Fedify has ReDoS Vulnerability in HTML Parsing Regex GSA_kwCzR0hTQS1yY2hmLXh3eDItaG05M84ABQDw

npm @fedify/fedify

High

10 months ago

@fedify/fedify has Improper Authentication and Incorrect Authorization GSA_kwCzR0hTQS02amNjLXhnY3ItcTNoNM4ABK4B

npm @fedify/fedify

Moderate

over 1 year ago

Infinite loop and Blind SSRF found inside the Webfinger mechanism in @fedify/fedify GSA_kwCzR0hTQS1jNTlwLXdxNjctMjR3eM4ABDov

npm @fedify/fedify

Moderate

almost 2 years ago

Server Side Request Forgery (SSRF) attack in Fedify GSA_kwCzR0hTQS1wOWNnLXZxY2MtZ3JjeM4AA9m5

npm @fedify/fedify

Filter by Severity

High 4 Moderate 2