Vulnerability Database

Published: Feb 22, 2021
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2021-27516" target="_blank" rel="noopener"> CVE-2021-27516
GHSA: <a href="https://github.com/advisories/GHSA-p6j9-7xhc-rhwp" target="_blank" rel="noopener"> GHSA-p6j9-7xhc-rhwp
Severity: High
Exploit:

300,445

Total vulnerabilities in the database

URI.js (aka urijs) before 1.19.6 mishandles certain uses of backslash such as http:/ and interprets the URI as a relative path.

CVSS v3:

CVSS v2:

CWEs:

Software	From	Fixed in
uri.js_project / uri.js	-	1.19.6
medialize / urijs	-	1.19.6

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.