CVE-2025-4759 | lockfile-lint-api up to 5.9.1 URL Validation incorrect behavior order: early validation (SNYK-JS-LOCKFILELINTAPI-10169587)

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability was found in lockfile-lint-api up to 5.9.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component URL Validation Handler. The manipulation leads to incorrect behavior order: early validation.

This vulnerability is handled as CVE-2025-4759. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-4759 | lockfile-lint-api up to 5.9.1 URL Validation incorrect behavior order: early validation (SNYK-JS-LOCKFILELINTAPI-10169587)

Post correlati

CVE-2024-26932 | Linux Kernel up to 6.8.2/6.9-rc1 typec tcpm_port_unregister_pd double free (242e425ed580/b63f90487bdf)

CVE-2024-33616 | Sharp/Toshiba Tec MFP Telnet improper authentication

CVE-2024-31668 | rizin up to 0.6.2 librz/analysis/meta meta_set neutralization

CVE-2024-5653 | Chanjet Smooth T+system 3.5 keyEdit.aspx KeyID sql injection