{"source":1093715,"name":"url-parse","dependency":"url-parse","title":"url-parse incorrectly parses hostname / protocol due to unstripped leading control characters.","url":"https://github.com/advisories/GHSA-jf5r-8hm2-f872","severity":"moderate","versions":["0.0.0","0.0.1","0.0.2","0.0.3","0.0.4","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.2.0","0.2.1","0.2.2","0.2.3","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.1.0","1.1.1","1.1.2","1.1.3","1.1.4","1.1.5","1.1.6","1.1.7","1.1.8","1.1.9","1.2.0","1.3.0","1.4.0","1.4.1","1.4.3","1.4.4","1.4.5","1.4.6","1.4.7","1.5.0","1.5.1","1.5.2","1.5.3","1.5.4","1.5.5","1.5.6","1.5.7","1.5.8","1.5.9","1.5.10"],"vulnerableVersions":["0.0.0","0.0.1","0.0.2","0.0.3","0.0.4","0.1.0","0.1.1","0.1.2","0.1.3","0.1.4","0.1.5","0.2.0","0.2.1","0.2.2","0.2.3","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.1.0","1.1.1","1.1.2","1.1.3","1.1.4","1.1.5","1.1.6","1.1.7","1.1.8","1.1.9","1.2.0","1.3.0","1.4.0","1.4.1","1.4.3","1.4.4","1.4.5","1.4.6","1.4.7","1.5.0","1.5.1","1.5.2","1.5.3","1.5.4","1.5.5","1.5.6","1.5.7","1.5.8"],"cwe":["CWE-639"],"cvss":{"score":6.5,"vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"},"range":"<1.5.9","id":"BrelXloQ3YWeiSIA9BVPvJOA0rfSuqNRtu8wAxCM3RLfNXrEfUIUMvRYEXcv1i2jbSOt8whIMD8C0qzSihLBfw=="}