tj/node-querystring

Releases29

Frequency1 month 6 days

Last Release over 12 years ago

Stars454

querystring parser for node and the browser - supporting nesting (used by Express, Connect, etc)

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2014-7191 ↗	Oct 19, 2014Sunday, 19 October 2014, 01:55	—	5 MEDIUM
The qs module before 1.0.0 in Node.js does not call the compact function for array data, which allows remote attackers to cause a denial of service (memory consumption) by using a large index value to create a sparse array.