5 matches found
CVE-2026-56140
creationtimestamp| type| source ---|---|--- 2026-07-05 21:04:18+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwi25d2p32g 2026-07-06 11:58:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpxzyzuuuz22 2026-07-06 20:28:13+00:00| seen|...
EUVD-2025-56140
Malicious code in zul-bakso77-sluey npm...
CVE-2024-56140
creationtimestamp| type| source ---|---|--- 2024-12-18 22:54:11+00:00| seen| https://t.me/cvedetector/13252...
CVE-2024-56140 Bypass of CSRF Middleware in Astro
Astro is a web framework for content-driven websites. In affected versions a bug in Astro’s CSRF-protection middleware allows requests to bypass CSRF checks. When the security.checkOrigin configuration option is set to true, Astro middleware will perform a CSRF check. However, a vulnerability...
CVE-2024-56140
CVE-2024-56140 affects the Astro CSRF-protection middleware. A semicolon-delimited parameter after the Content-Type (e.g., application/x-www-form-urlencoded; abc) causes the request to be treated as a simple request, bypassing preflight validation and CSRF checks when security.checkOrigin is true...