Search...
Toggle theme

3.21.x Release Notes

Express NES Changelog

3.21.5 (NES) - October 17, 2024

This release improves the handling of header data and attributes in the response component as well as dependency updates to resolve vulnerabilities.

Breaking Changes:

  • None

3.21.4 (NES) - August 23, 2024

This release further improves the handling of URLs when used for setting the "Location" header in the response component.

  • Response: Improve handling of path strings and relative URLs used when setting the "Location" header for redirects
  • This fixes a Medium Severity XSS vulnerability (CVE-2024-9266)
  • Full Version: 3.21.2-express-3.21.4

Breaking Changes:

  • None

3.21.3 (NES) - August 23, 2024

  • This is the initial base release of Express 3.21.x NES. This release contains no functional changes from Express 3.21.2.
  • Full Version: 3.21.2-express-3.21.3

Breaking Changes:

  • None