pkg:npm/elysia

4 total CVEsHIGH1MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-30837Elysia has a string URL format ReDoS
    from 0, < 1.4.26
  • MEDIUM6.5CVE-2026-31865Elysia Cookie Value Prototype Pollution
    from 0, < 1.4.27
  • CVE-2025-66457Elysia affected by arbitrary code injection through cookie config
    from 0, < 1.4.18
  • CVE-2025-66456Elysia vulnerable to prototype pollution with multiple standalone schema validation
    >= 1.4.0, < 1.4.17