VIR Vulnerability Intelligence Relay

Package impact

npm npm / @fedify/fedify

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-42462 high 8.0 3d ago Fedify has an LD-Signature Bypass via JSON-LD Named-Graph Restructuring
CVE-2026-34148 unknown 2mo ago Fedify affected by resource exhaustion caused by unbounded redirect following during remote key/document resolution
CVE-2025-68475 unknown 5mo ago Fedify has ReDoS Vulnerability in HTML Parsing Regex
CVE-2025-54888 unknown 10mo ago @fedify/fedify has Improper Authentication and Incorrect Authorization
CVE-2025-23221 unknown 1y ago Infinite loop and Blind SSRF found inside the Webfinger mechanism in @fedify/fedify
CVE-2024-39687 unknown 2y ago Server Side Request Forgery (SSRF) attack in Fedify