kornelski/http-cache-semantics

Releases19

Frequency4 months 1 week

Last Release over 3 years ago

Stars259

RFC 7234 in JavaScript. Parses HTTP headers to correctly compute cacheability of responses, even in complex cases

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-25881 ↗	Jan 31, 2023Tuesday, 31 January 2023, 05:15	5.3 MEDIUM	—
This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server, when that server reads the cache policy from the request using this library.