AdonisJS HTTP server with support packed with Routing and Cookies
92%
Total Score
63
100
100
95
100
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2026-334058 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. @adonisjs/http-server is vulnerable to Cross-Site Scripting (XSS) in versions 7.0.0 - 8.2.0 and 9.0.0 - 9.0.2. | 7.0.0 - 8.2.09.0.0 - 9.0.2 | Medium |
CVE-2026-40255 @adonisjs/http-server is vulnerable to URL Redirection to Untrusted Site ('Open Redirect') in versions 8.0.0-next.0 - 8.2.0 and 0.0.0 - 7.8.1. | 0.0.0 - 7.8.18.0.0-next.0 - 8.2.0 | Medium |
| Dependency | Last Release | Score |
|---|---|---|
etag Version ^1.8.1 | — | — |
vary Version ^1.1.2 | — | — |
fresh Version ^0.5.2 | — | — |
destroy Version ^1.2.0 | — | — |
type-is Version ^2.1.0 | — | — |
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant