Information on source package node-qs

Available versions

ReleaseVersion
bullseye6.9.4+ds-1+deb11u1
bookworm6.11.0+ds+~6.9.7-3
trixie6.13.0+ds+~6.9.16-1
forky6.15.0+ds+~6.15.0-3
sid6.15.0+ds+~6.15.0-3

Open issues

BugbullseyebookwormtrixieforkysidDescription
CVE-2026-8723vulnerable (no DSA, postponed)vulnerablevulnerablevulnerablevulnerable### Summary `qs.stringify` throws `TypeError` when called with `arr ...
CVE-2026-2391vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixed### Summary The `arrayLimit` option in qs does not enforce limits for ...
CVE-2025-15284vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)fixedfixedImproper Input Validation vulnerability in qs (parse modules) allows H ...

Resolved issues

BugDescription
CVE-2022-24999qs before 6.10.3, as used in Express before 4.17.3 and other products, ...
CVE-2014-10064The qs module before 1.0.0 does not have an option or default for spec ...
CVE-2014-7191The qs module before 1.0.0 in Node.js does not call the compact functi ...

Security announcements

DSA / DLADescription
DLA-3299-1node-qs - security update
Search for package or bug name: Reporting problems