CVE-2026-44232

UNKNOWN 0.0

dssrf: every IPv6 category bypasses is_url_safe

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

DSSRF is a Node.js library that provides a wide range of utilities and advanced SSRF defense checks. Prior to 1.3.0, every IPv6 category bypasses is_url_safe. This vulnerability is fixed in 1.3.0.

CWE	CWE-791
Vendor	hackingrepo
Product	dssrf-js
Published	May 12, 2026

Stay Ahead of the Next One

Get instant alerts for hackingrepo dssrf-js

Be the first to know when new unknown vulnerabilities affecting hackingrepo dssrf-js are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

HackingRepo / dssrf-js

< 1.3.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/HackingRepo/dssrf-js/security/advisories/GHSA-8p33-q827-ghj5