CVE-2024-23641 Sending a GET or HEAD request with a body crashes SvelteKit

SvelteKit is a web development kit. In SvelteKit 2, sending a GET request with a body eg to a built and previewed/hosted sveltekit app throws Request with GET/HEAD method cannot have body. and crashes the preview/hosting. After this happens, one must manually restart the app. TRACE requests will...

GHSA-G5M6-HXPP-FC49 Sending a GET or HEAD request with a body crashes SvelteKit

Summary In SvelteKit 2 sending a GET request with a body eg to a SvelteKit app in preview or with adapter-node throws Request with GET/HEAD method cannot have body. and crashes the app. node:internal/deps/undici/undici:6066 throw new TypeError"Request with GET/HEAD method cannot have body."; ^...

Sending a GET or HEAD request with a body crashes SvelteKit

Summary In SvelteKit 2 sending a GET request with a body eg to a SvelteKit app in preview or with adapter-node throws Request with GET/HEAD method cannot have body. and crashes the app. node:internal/deps/undici/undici:6066 throw new TypeError"Request with GET/HEAD method cannot have body."; ^...

PT-2024-19992 · Sveltejs · @Sveltejs/Adapter-Node +1

Name of the Vulnerable Software and Affected Versions: @Sveltejs/adapter-node versions prior to 2.1.2, 3.0.3, and 4.0.1 @Sveltejs/kit versions prior to 2.4.3 Description: The issue occurs when sending a GET request with a body, for example , to a built and previewed/hosted SvelteKit app, which...