Vulnerabilidades em fastify
28 resultadosCVE-2023-29020MEDIUMCross site request forgery token fixation in fastify-passportEPSS 0.4%CVE-2022-41919MEDIUMFastify vulnerable to Cross-Site Request Forgery (CSRF) attack via incorrect content typeEPSS 0.4%CVE-2026-3419MEDIUMFastify's Missing End Anchor in "subtypeNameReg" Allows Malformed Content-Types to Pass ValidationEPSS 0.4%CVE-2026-33806HIGHfastify vulnerable to Body Schema Validation Bypass via Leading Space in Content-Type HeaderEPSS 0.3%CVE-2023-27495MEDIUMBypass of CSRF protection in the presence of predictable userInfo in @fastify/csrf-protectionEPSS 0.3%CVE-2026-22037HIGH@fastify/express vulnerable to Improper Handling of URL Encoding (Hex Encoding)EPSS 0.3%CVE-2025-66415MEDIUMfastify-reply-from bypass of reply forwardingEPSS 0.1%CVE-2026-3635MEDIUMFastify request.protocol and request.host spoofable via X-Forwarded-Proto/Host from untrusted connections when trustProxy uses restrictive trust functionEPSS 0.1%