Vulnerability in Rexxars Sse-channel

CVE-2026-44217

sse-channel is an SSE-implementation which can be used to any node.js http request/response stream. Prior to 4.0.1, implementations that allow user-provided values to be passed to event, retry or id fields are susceptible to event spoofing…

Vulnerability class: CRLF Injection

EPSS: 0.000 (5.7th percentile) — read the EPSS interpretation.