Name: Socket.io Parser
Author: Socket

🔍 What is Socket.io Parser?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2022-2421

CRITICAL CVSS 10.0 Oct 26, 2022

CVE-2022-2421 is a critical vulnerability in the Socket.io JavaScript library that allows attackers to inject malicious function references into query objects through improper type validation in attac...

CVE-2023-32695

HIGH CVSS 7.3 May 27, 2023

CVE-2023-32695 is a denial-of-service vulnerability in socket.io-parser where a specially crafted Socket.IO packet triggers an uncaught exception, crashing the Node.js server process. This affects any...

CVE-2020-36049

HIGH CVSS 7.5 Jan 8, 2021

This vulnerability in socket.io-parser allows attackers to cause denial of service through memory exhaustion by sending specially crafted large packets. The parser uses inefficient string concatenatio...