3.21.x Release Notes
Express NES Changelog
3.21.2-express-3.21.4 - August 23, 2024
This release further improves the handling of URLs when used for setting the "Location" header in the response component.
Fixes:
- Response: Improve handling of path strings and relative URLs used when setting the "Location" header for redirects
- This fixes a Medium Severity XSS vulnerability (CVE-2024-9266)
Breaking Changes:
- None
Fixes:
- This is the initial base release of Express 3.21.x NES. This release contains no functional changes from Express 3.21.2.
Breaking Changes:
- None