Fast-http Project Fast-http — known CVE vulnerabilities
Every CVE whose affected-product data names Fast-http Project Fast-http, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2020-7687 — CVSS 7.5 (high): This affects all versions of package fast-http. There is no path sanitization in the path provided at fs.readFile in index.js.