CVEs affecting projects tracked on Release Alert, from NVD & OSV.
url-parse is vulnerable to URL Redirection to Untrusted Site