Denial of Service (DoS) Vulnerability in lite-web-server Package

Denial of Service (DoS) Vulnerability in lite-web-server Package

CVE-2023-26104 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

All versions of the package lite-web-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.

Learn more about our Web App Pen Testing.