pkg:npm/http-proxy-middleware

All known vulnerabilities

• HIGH7.5CVE-2024-21536Denial of service in http-proxy-middleware
  from 0, < 2.0.7
• MEDIUM4.0CVE-2025-32996http-proxy-middleware can call writeBody twice because "else if" is not used
  >= 1.3.0, < 2.0.8
• MEDIUM4.0CVE-2025-32997http-proxy-middleware allows fixRequestBody to proceed even if bodyParser has failed
  >= 1.3.0, < 2.0.9