pkg:npm/hono
Type
npm
Name
hono
Known advisories, vulnerabilities and fixes for hono package.
- Repository
- https://www.npmjs.com/package/hono
Moderate
3
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 4.2.7 |
CVE-2024-32869
|
 NPM:GHSA-3MPF-RCC7-5347
|
Hono vulnerable to Restricted Directory Traversal in serveStatic with deno | moderate |
2024-04-23T16:20:49
(4 months ago) |
|
| Fixed | = 4.2.7 |
CVE-2024-32869
|
NPM:GHSA-3MPF-RCC7-5347
|
Hono vulnerable to Restricted Directory Traversal in serveStatic with deno | moderate |
2024-04-23T16:20:49
(4 months ago) |
|
| Affected | < 3.11.7 |
CVE-2023-50710
|
NPM:GHSA-F6GV-HH8J-Q8VQ
|
Named path parameters can be overridden in TrieRouter | moderate |
2023-12-15T02:45:54
(8 months ago) |
|
| Fixed | = 3.11.7 |
CVE-2023-50710
|
NPM:GHSA-F6GV-HH8J-Q8VQ
|
Named path parameters can be overridden in TrieRouter | moderate |
2023-12-15T02:45:54
(8 months ago) |
|
| Affected | < 4.5.8 |
CVE-2024-43787
|
NPM:GHSA-RPFR-3M35-5VX5
|
Hono CSRF middleware can be bypassed using crafted Content-Type header | moderate |
2024-08-22T16:41:08
(2 weeks ago) |
|
| Fixed | = 4.5.8 |
CVE-2024-43787
|
NPM:GHSA-RPFR-3M35-5VX5
|
Hono CSRF middleware can be bypassed using crafted Content-Type header | moderate |
2024-08-22T16:41:08
(2 weeks ago) |