CVE-2026-43897 in link-preview-jsthông tin

Tóm tắt

Bởi MITRE • 12/05/2026

Link Preview JS extracts web links information. Prior to 4.0.1, the library did not check for IPv6 loopback attacks. There was also a DNS attack, where an address could be resolved into an internal IP. This could cause internal data leaks. This vulnerability is fixed in 4.0.1.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

GitHub M

Đặt trước

04/05/2026

Tiết lộ

12/05/2026

Kiểm duyệt

được chấp nhận

mục

VDB-362901

CPE

sẵn sàng

CWE

CWE-918 (Đã xác nhận)

CVSS

7.3 (VulDB)

EPSS

0.00054

KEV

không

Các hoạt động

rất thấp

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-43897
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-43897
CVE Details	https://www.cvedetails.com/cve/CVE-2026-43897/

◂ Trước Tổng Quan Tiếp theo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!