| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|
| CVE-2022-0691 | vulnerable | vulnerable | vulnerable | fixed | fixed | Authorization Bypass Through User-Controlled Key in NPM url-parse prio ... |
| CVE-2022-0686 | vulnerable | vulnerable | vulnerable | fixed | fixed | Authorization Bypass Through User-Controlled Key in NPM url-parse prio ... |
| CVE-2022-0639 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Authorization Bypass Through User-Controlled Key in NPM url-parse prio ... |
| CVE-2022-0512 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | Authorization Bypass Through User-Controlled Key in NPM url-parse prio ... |
| CVE-2021-27515 | vulnerable | vulnerable (no DSA) | fixed | fixed | fixed | url-parse before 1.5.0 mishandles certain uses of backslash such as ht ... |
| CVE-2021-3664 | vulnerable | vulnerable (no DSA) | fixed | fixed | fixed | url-parse is vulnerable to URL Redirection to Untrusted Site ... |
| CVE-2020-8124 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | Insufficient validation and sanitization of user input exists in url-p ... |