Components
Vulnerabilities
Pricing
MCP
API
Docs
Sign up
Login
npm
@andymiller/mcp-npx-fda
1.0.5
@andymiller/mcp-npx-fda 1.0.5
Published
Apr 25, 2025
•
Policy
compliance
npm Registry
Developer Trust Score
N/A
Recommended Version:
x.y.z
Latest version with 0 known vulnerabilities that meets your policy.
Compare Versions
Overview
Overview
Versions
8
Versions
8
Vulnerabilities
11
Vulnerabilities
11
Dependencies
0
Dependencies
0
Reset filters
Severity
Critical
(0)
High
(0)
Medium
(3)
Low
(0)
CVSS Score
0.0
10.0
EPSS Score
0.0
1.0
Malware
KEV Status
Published
Filter
Sort: Published (Newest first)
6.9
CVE-2025-13466
body-parser 2.2.0 is vulnerable to denial of service due to inefficient handling of URL-encoded bodies with very large numbers of parameters. An attacker can send payloads containing thousands of parameters within the default 100KB request size limit, causing elevated CPU and memory usage. This can lead to service slowdown or partial outages under sustained malicious traffic. This issue is addressed in version 2.2.1.
affected
Severity
Medium
Published
Nov 26, 2025
5.3
CVE-2024-10491
A vulnerability has been identified in the Express response.links function, allowing for arbitrary resource injection in the Link header when unsanitized data is used. The issue arises from improper sanitization in `Link` header values, which can allow a combination of characters like `,`, `;`, and `<>` to preload malicious resources. This vulnerability is especially relevant for dynamic parameters.
affected
Severity
Medium
5.9
sonatype-2021-0078
express + hbs - Local File Read via Path Traversal
affected
Severity
Medium
Published
Jan 29, 2021
Published
Nov 1, 2024
