npm/webpack-dev-server — 4 CVEs

HIGH7.5CVE-2018-14732Missing Origin Validation in webpack-dev-server

from 0, < 3.1.11

MEDIUM6.5CVE-2025-30360webpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browser

from 0, < 5.2.1

MEDIUM5.3CVE-2026-6402webpack-dev-server vulnerable to cross-origin source code exposure on non-HTTPS origins

from 0, < 5.2.4

MEDIUM5.3webpack-dev-server users' source code may be stolen when they access a malicious web site

from 0, < 5.2.1

pkg:npm/webpack-dev-server