Search for packages
| purl | pkg:npm/normalize-url@4.3.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-vg7c-pctm-m7gn
Aliases: CVE-2021-33502 GHSA-px4h-xg32-q955 |
ReDoS in normalize-url The normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 for Node.js has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:25:16.222428+00:00 | GitLab Importer | Affected by | VCID-vg7c-pctm-m7gn | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/normalize-url/CVE-2021-33502.yml | 38.4.0 |
| 2026-04-11T22:38:02.762835+00:00 | GitLab Importer | Affected by | VCID-vg7c-pctm-m7gn | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/normalize-url/CVE-2021-33502.yml | 38.3.0 |
| 2026-04-02T22:48:44.788828+00:00 | GitLab Importer | Affected by | VCID-vg7c-pctm-m7gn | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/normalize-url/CVE-2021-33502.yml | 38.1.0 |
| 2026-04-02T16:57:26.910293+00:00 | GHSA Importer | Affected by | VCID-vg7c-pctm-m7gn | https://github.com/advisories/GHSA-px4h-xg32-q955 | 38.1.0 |
| 2026-04-01T17:06:34.832309+00:00 | GitLab Importer | Affected by | VCID-vg7c-pctm-m7gn | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/normalize-url/CVE-2021-33502.yml | 38.0.0 |