All versions of package lite-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI()
function is unable to parse.
{ "github_reviewed": true, "github_reviewed_at": "2022-12-20T17:37:47Z", "nvd_published_at": "2022-12-20T05:15:00Z", "cwe_ids": [ "CWE-20", "CWE-400" ], "severity": "HIGH" }