CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added yesterday•5 views

EUVD-2026-38338

3.1CVSS5.9AI score0.00016EPSS

Cvelist•added yesterday•16 views

CVE-2026-53663 React Router: `handleDocumentRequest` CSRF check covers `POST` only; PUT/PATCH/DELETE bypass

3.1CVSS0.00016EPSS

RedhatCVE•added 5 days ago•6 views

CVE-2026-33244

A flaw was found in react-router. When using Framework Mode with pre-rendering enabled, an attacker can exploit improper handling of the HTTP Location header value. This can lead to Cross-Site Scripting XSS, allowing malicious scripts to be injected into statically generated HTML files if the...

5.4CVSS5.2AI score0.00144EPSS

Exploits0References4

Github Security Blog•added 2026/06/15 8:6 p.m.•5 views

React Router: Potential CSRF via PUT/PATCH/DELETE document requests

Certain CSRF checks in React Router v7 Framework Mode were insufficient and run on POST requests, but were bypassed on PUT/PATCH/DELETE requests. This is a low severity vulnerability because modern browser protections CORS preflight, SameSite cookies already block the cross-origin attack vectors...

3.1CVSS5.4AI score0.00016EPSS

Exploits0References2Affected Software2

Positive Technologies•added 2026/06/15 12:0 a.m.•10 views

PT-2026-49578

Name of the Vulnerable Software and Affected Versions React Router version 7 Description Insufficient Cross-Site Request Forgery CSRF checks in Framework Mode allow bypasses when using 'PUT', 'PATCH', or 'DELETE' requests, as the checks were primarily applied to 'POST' requests. CSRF is a type of...

3.1CVSS5.8AI score0.00016EPSS

Exploits0References5

Github Security Blog•added 2026/06/04 3:23 p.m.•13 views

React Router vulnerable to Denial of Service via reflected user input in single-fetch

A DoS vulnerability exists in the React Router v7 Framework Mode, as well as Remix v2.9.0+ with Single Fetch enabled. In some scenarios the underlying serialization algorithm can become a bottleneck when encoding specific types of data into server responses. Please upgrade to React Router v7.14.0...

7.5CVSS5.8AI score0.00258EPSS

Exploits0References6Affected Software2

SUSE CVE•added 2026/06/04 2:24 a.m.•8 views

SUSE CVE-2026-42211

React Router is a router for React. In versions 7.0.0 through 7.14.1, when using Framework Mode, a combination of steps could potentially allow unauthorized remote code execution RCE through external requests. This attack requires the application code to have an existing prototype pollution...

8.1CVSS6.4AI score0.00374EPSS

SUSE CVE•added 2026/06/04 2:24 a.m.•7 views

SUSE CVE-2026-42342

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the manifest endpoint, resulting in response...

7.5CVSS5.8AI score0.00263EPSS

EUVD•added 2026/06/03 9:3 p.m.•10 views

EUVD-2026-33999

React Router's vendored turbo-stream v2 allows arbitrary constructor invocation via TYPEERROR deserialization leading to Unauth RCE...

OSV•added 2026/06/03 9:3 p.m.•8 views

Exploits0References2

GHSA-49RJ-9FVP-4H2H React Router's vendored turbo-stream v2 allows arbitrary constructor invocation via TYPE_ERROR deserialization leading to Unauth RCE

When using React Router v7 in Framework Mode, there exists a combination of steps that could potentially allow unauthorized RCE through external requests. This first requires the application code to have an existing prototype pollution vulnerability. This can be leveraged into a 2-step attack in...

Github Security Blog•added 2026/06/03 9:3 p.m.•11 views

React Router's vendored turbo-stream v2 allows arbitrary constructor invocation via TYPE_ERROR deserialization leading to Unauth RCE

Exploits0References3Affected Software1

Github Security Blog•added 2026/06/03 8:33 p.m.•13 views

React Router has stored XSS via unescaped Location header in prerendered redirect HTML

When using React Router v7 Framework Mode with Pre-rendering enabled, an improper neutralization of the HTTP Location header value can permit Cross-Site Scripting XSS in statically generated HTML files if the redirect location comes from an untrusted source. !NOTE This does not impact your React...

Exploits0References3Affected Software1

OSV•added 2026/06/03 8:33 p.m.•6 views

GHSA-F22V-GFQF-P8F3 React Router has stored XSS via unescaped Location header in prerendered redirect HTML

EUVD•added 2026/06/03 8:33 p.m.•12 views

EUVD-2026-33986

React Router has stored XSS via unescaped Location header in prerendered redirect HTML...

SUSE CVE•added 2026/06/03 2:25 a.m.•13 views

Exploits0References2

SUSE CVE-2026-33244

React Router is a router for React. In versions 7.5.1 through 7.13.1, when using Framework Mode with pre-rendering enabled, improper neutralization of the HTTP Location header value can permit Cross-Site Scripting XSS in the statically generated HTML files if the redirect location comes from an...

Positive Technologies•added 2026/06/03 12:0 a.m.•13 views

PT-2026-46095

Positive Technologies•added 2026/06/03 12:0 a.m.•8 views

Exploits0References4

PT-2026-46085

Snyk•added 2026/06/02 10:22 p.m.•7 views

Exploits0References4

Deserialization of Untrusted Data

Overview Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the turbo-stream component in in Framework Mode. An attacker can execute arbitrary code on the remote server by sending specially crafted external requests that exploit an existing prototype polluti...

9.2CVSS6.1AI score0.00374EPSS

Exploits0References2

NVD•added 2026/06/02 8:16 p.m.•10 views

CVE-2026-42342

7.5CVSS0.00263EPSS