Vulnerabilidades en webpack
6 resultadosCVE-2024-29180HIGHwebpack-dev-middleware Path Traversal vulnerabilityEPSS 1.2%CVE-2024-43788MEDIUMDOM Clobbering Gadget found in Webpack's AutoPublicPathRuntimeModule that leads to Cross-site Scripting (XSS)EPSS 0.9%CVE-2025-30359MEDIUMwebpack-dev-server users' source code may be stolen when they access a malicious web siteEPSS 0.4%CVE-2025-30360MEDIUMwebpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browserEPSS 0.3%CVE-2025-68157LOWwebpack buildHttp HttpUriPlugin allowedUris bypass via HTTP redirectsEPSS 0.2%CVE-2025-68458LOWwebpack buildHttp: allowedUris allow-list bypass via URL userinfo (@) leading to build-time SSRF behaviorEPSS 0.2%