This page collects WhisperX intelligence signals tagged #HTTP Client. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical security flaw has been identified in the widely-used `undici` HTTP client library for Node.js, forcing a mandatory major version upgrade. The vulnerability, tracked as CVE-2026-22036, resides in the library's handling of chained HTTP content encoding algorithms, such as `gzip` and `br`. The decompress interc...
A widely used HTTP client helper library contains a critical security flaw, exposing applications to Server-Side Request Forgery (SSRF) attacks. The `Http` helper's `send()` method passes user-supplied URLs directly to the underlying `fetch()` function without any validation, creating a direct pipeline for attackers to...
A high-severity vulnerability, tracked as CVE-2026-42035, has been identified in two widely deployed versions of the Axios HTTP client library: versions 0.25.0 and 0.21.4. The flaw carries a "High" severity rating and was detected in packages distributed via the official npm registry as axios-0.25.0.tgz and axios-0.21....