Medialize Uri.Js vulnerabilities

5 known vulnerabilities affecting medialize/medialize_uri.js.

Total CVEs

5

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

MEDIUM5

Vulnerabilities

Page 1 of 1

CVE-2022-1243MEDIUMCVSS 6.1≥ unspecified, < 1.19.112022-04-05

CVE-2022-1243 [MEDIUM] CWE-20 CVE-2022-1243: CRHTLF can lead to invalid protocol extraction potentially leading to XSS in GitHub repository media CRHTLF can lead to invalid protocol extraction potentially leading to XSS in GitHub repository medialize/uri.js prior to 1.19.11.

CVE-2022-1233MEDIUMCVSS 6.1≥ unspecified, < 1.19.112022-04-04

CVE-2022-1233 [MEDIUM] CWE-115 CVE-2022-1233: URL Confusion When Scheme Not Supplied in GitHub repository medialize/uri.js prior to 1.19.11. URL Confusion When Scheme Not Supplied in GitHub repository medialize/uri.js prior to 1.19.11.

CVE-2022-0868MEDIUMCVSS 6.1≥ unspecified, < 1.19.102022-03-06

CVE-2022-0868 [MEDIUM] CWE-601 CVE-2022-0868: Open Redirect in GitHub repository medialize/uri.js prior to 1.19.10. Open Redirect in GitHub repository medialize/uri.js prior to 1.19.10.

CVE-2022-0613MEDIUMCVSS 6.5≥ unspecified, < 1.19.82022-02-16

CVE-2022-0613 [MEDIUM] CWE-639 CVE-2022-0613: Authorization Bypass Through User-Controlled Key in NPM urijs prior to 1.19.8. Authorization Bypass Through User-Controlled Key in NPM urijs prior to 1.19.8.

CVE-2021-3647MEDIUMCVSS 6.1≥ unspecified, ≤ 1.19.62021-07-16

CVE-2021-3647 [MEDIUM] CWE-601 CVE-2021-3647: URI.js is vulnerable to URL Redirection to Untrusted Site URI.js is vulnerable to URL Redirection to Untrusted Site