fastify Security Advisories - Npm | Ecosyste.ms: Advisories

fastify

Fast and low overhead web framework, for Node.js

View on github.com · View on npmjs.org

Security Advisories for fastify in npm

High

about 2 months ago

Fastify has a Body Schema Validation Bypass via Leading Space in Content-Type Header GSA_kwCzR0hTQS0yNDdjLTk3NDMtNTk2M84ABVVe

npm fastify

Moderate

3 months ago

fastify: request.protocol and request.host Spoofable via X-Forwarded-Proto/Host from Untrusted Connections GSA_kwCzR0hTQS00NDRyLWN3cDIteDV4Zs4ABURA

npm fastify

Moderate

3 months ago

Fastify's Missing End Anchor in "subtypeNameReg" Allows Malformed Content-Types to Pass Validation GSA_kwCzR0hTQS01NzNmLXg4OWctaHFwOc4ABTPi

npm fastify

Low

4 months ago

Fastify Vulnerable to DoS via Unbounded Memory Allocation in sendWebStream GSA_kwCzR0hTQS1tcnEzLXZqanItcDc3Y84ABRz5

npm fastify

High

4 months ago

Fastify's Content-Type header tab character allows body validation bypass GSA_kwCzR0hTQS1qeDJjLXJ4Y20tanZtcc4ABRz4

npm fastify

High

about 1 year ago

Fastify vulnerable to invalid content-type parsing, which could lead to validation bypass GSA_kwCzR0hTQS1tZzJoLTZ4NjItd3B3Y84ABHBT

npm fastify

Moderate

over 3 years ago

Fastify: Incorrect Content-Type parsing can lead to CSRF attack GSA_kwCzR0hTQS0zZmpqLXA3OWotYzloaM4AAv_I

npm fastify

High

over 3 years ago

fastify vulnerable to denial of service via malicious Content-Type GSA_kwCzR0hTQS00NTV3LWM0NXYtODZyZ84AAvO9

npm fastify

Moderate

almost 6 years ago

Denial of service in fastify MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh3NXAtaHc2ci0yajk4

npm fastify

High

almost 8 years ago

Denial of Service vulnerability with large JSON payloads in fastify MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xNmMtZmg5Ny00Z3d2

npm fastify

Filter by Severity

High 5 Moderate 4 Low 1