659 matches found
CVE-2025-55207
Astro CVE-2025-55207 describes an Open Redirect vulnerability in certain Astro deployment scenarios. Specifically, when using the Node deployment adapter in standalone mode with trailingSlash set to "always", URLs like https://example.com//astro.build/press can redirect to //astro.build/press, en...
CVE-2025-55207 @astrojs/node's trailing slash handling causes open redirect issue
Astro is a web framework for content-driven websites. Following CVE-2025-54793 there's still an Open Redirect vulnerability in a subset of Astro deployment scenarios prior to version 9.4.1. Astro 5.12.8 addressed CVE-2025-54793 where https://example.com//astro.build/press would redirect to the...
PT-2025-33494 · Astro · Astro
Name of the Vulnerable Software and Affected Versions: Astro versions prior to 9.4.1 Description: Astro is a web framework for content-driven websites. An open redirect vulnerability exists in certain Astro deployment scenarios. Specifically, when using the Node deployment adapter in standalone...
Astro 输入验证错误漏洞
Astro is an Astro open source web framework for content-driven websites. An input validation error vulnerability exists in Astro versions prior to 9.4.1, which stems from a flaw in the redirection feature that could lead to an open redirection attack...
Malicious code in figures-jest-astro-draco (npm)
The package figures-jest-astro-draco was found to contain malicious code...
Malicious code in astro-publish-sedna-indus (npm)
The package astro-publish-sedna-indus was found to contain malicious code...
Malicious code in planetology-indus-webdriver-mocha-astro (npm)
The package planetology-indus-webdriver-mocha-astro was found to contain malicious code...
MAL-2025-33419 Malicious code in slidev-astro-jekyll-cz-conventional-changelog (npm)
The package slidev-astro-jekyll-cz-conventional-changelog was found to contain malicious code...
Malicious code in auth0-apollo-astro-eclipse (npm)
The package auth0-apollo-astro-eclipse was found to contain malicious code...
Malicious code in loglevel-astro-docusaurus-adonis (npm)
The package loglevel-astro-docusaurus-adonis was found to contain malicious code...
Malicious code in module-astro-nashira-chariklo (npm)
The package module-astro-nashira-chariklo was found to contain malicious code...
Malicious code in slidev-astro-jekyll-cz-conventional-changelog (npm)
The package slidev-astro-jekyll-cz-conventional-changelog was found to contain malicious code...
Malicious code in astro-xenon-restart-capella (npm)
The package astro-xenon-restart-capella was found to contain malicious code...
Malicious code in astro-cache-ablation-css-loader (npm)
The package astro-cache-ablation-css-loader was found to contain malicious code...
Malicious code in astro-colors-sagitta-cors (npm)
The package astro-colors-sagitta-cors was found to contain malicious code...
MAL-2025-25446 Malicious code in lithosphere-astro-prompts-paleoceanography (npm)
The package lithosphere-astro-prompts-paleoceanography was found to contain malicious code...
MAL-2025-29168 Malicious code in photon-astro-install-singularity (npm)
The package photon-astro-install-singularity was found to contain malicious code...
Malicious code in envconfig-deimos-astro-test (npm)
The package envconfig-deimos-astro-test was found to contain malicious code...
Malicious code in virgo-astro-express-markdown-pdf (npm)
The package virgo-astro-express-markdown-pdf was found to contain malicious code...
Malicious code in astro-neptune-ariel-antimatter (npm)
The package astro-neptune-ariel-antimatter was found to contain malicious code...