VulnerableCode Package Details - pkg:npm/path-parse@1.0.7

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:npm/path-parse@1.0.7

Essentials
History (3)

purl	pkg:npm/path-parse@1.0.7

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-tsp3-tyjt-h7bk	Regular Expression Denial of Service in path-parse Affected versions of npm package `path-parse` are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity.	CVE-2021-23343 GHSA-hj48-42vr-x3v9

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-02T16:57:38.373433+00:00	GHSA Importer	Fixing	VCID-tsp3-tyjt-h7bk	https://github.com/advisories/GHSA-hj48-42vr-x3v9	38.1.0
2026-04-02T12:38:20.484183+00:00	GitLab Importer	Fixing	VCID-tsp3-tyjt-h7bk	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/path-parse/CVE-2021-23343.yml	38.0.0
2026-04-01T13:01:45.722612+00:00	GithubOSV Importer	Fixing	VCID-tsp3-tyjt-h7bk	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/08/GHSA-hj48-42vr-x3v9/GHSA-hj48-42vr-x3v9.json	38.0.0