npm/hapi — 6 CVEs · VulnScope

HIGH7.5CVE-2017-16013Denial of Service via malformed accept-encoding header in hapi

>= 15.0.0, < 16.1.1

—CVE-2015-9243Unsafe Merging of CORS Configuration Conflict in hapi

from 0, < 11.1.4

—CVE-2014-4671Rosetta-Flash JSONP Vulnerability in hapi

from 0, < 6.1.0

—CVE-2015-9236Incorrect handling of CORS preflight request headers in hapi

from 0, < 11.0.0

—Denial of Service in hapi

from 0, < 11.1.3

—File Descriptor Leak Can Cause DoS Vulnerability in hapi

>= 2.0.0, < 2.2.0

pkg:npm/hapi