Easy as cake e-mail sending from your Node.js applications
91%
Total Score
62
100
100
95
100
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2026-615133 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. nodemailer is vulnerable to CRLF Injection in versions 3.0.0 - 9.0.1. | 3.0.0 - 9.0.1 | Low |
AIKIDO-2026-627552 nodemailer is vulnerable to Server-side Request Forgery (SSRF) in versions 0.0.1 - 9.0.0. | 0.0.1 - 9.0.0 | High |
AIKIDO-2026-10941 nodemailer is vulnerable to Missing Authorization in versions 0.0.0 - 8.0.8. | 0.0.0 - 8.0.8 | Medium |
AIKIDO-2026-10942 nodemailer is vulnerable to CRLF Injection in versions 0.0.0 - 8.0.8. | 0.0.0 - 8.0.8 | Medium |
CVE-2025-14874 nodemailer is vulnerable to Improper Check or Handling of Exceptional Conditions in versions 0.0.0 - 7.0.10. | 0.0.0 - 7.0.10 | High |
No direct dependencies.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant