Homepage
About Snyk

csrf-lite vulnerabilities

csrf protection for framework-less node sites

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the csrf-lite package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Non-Constant Time String Comparison

<=0.1.1
  • M
Non-Constant Time String Comparison

<=0.1.1

Package versions

1 - 6 of 6 Results
version published direct vulnerabilities
1.0.0 29 Mar, 2016
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.1.2 29 Mar, 2016
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
0.1.1 20 May, 2015
  • 0
    C
  • 0
    H
  • 2
    M
  • 0
    L
0.1.0 2 Mar, 2013
  • 0
    C
  • 0
    H
  • 2
    M
  • 0
    L
0.0.2 25 Jan, 2013
  • 0
    C
  • 0
    H
  • 2
    M
  • 0
    L
0.0.1 25 Jan, 2013
  • 0
    C
  • 0
    H
  • 2
    M
  • 0
    L