CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

163 matches found

CVE-2026-54298

Astro is a web framework. Prior to 6.4.6, the spreadAttributes function in Astro's server-side rendering pipeline iterates over object keys and passes them directly to addAttribute, which interpolates the key into the HTML output without escaping. When a developer uses the spread syntax ...props ...

6.1CVSS0.00036EPSS

Exploits1References1

NVD•added yesterday•7 views

CVE-2026-50146

Astro is a web framework. Prior to 6.3.3, when a component uses a client: directive, Astro inserts named slot content into a data-astro-template attribute without HTML escaping the slot name allowing an attacker to break out of the attribute context and inject arbitrary HTML, resulting in reflect...

7.1CVSS0.00029EPSS

Exploits1References1

CVE•added yesterday•11 views

CVE-2026-54299

Summary of CVE-2026-54299 (Astro) : Astro SSR apps that prerender error pages (e.g., 404/500 with prerender = true) fetch those pages over HTTP using a URL derived from request.url, which is based on the Host header. If Host is not validated against allowedDomains, an attacker can direct the fetc...

7.5CVSS6AI score0.00044EPSS

Exploits0References1

CVE•added yesterday•9 views

CVE-2026-54298

Astro, prior to 6.4.6, is vulnerable to XSS via unescaped attribute names when spreading props onto HTML elements. The spreadAttributes path iterates over object keys and passes them to addAttribute, which interpolates the key into the HTML output without escaping, allowing attackers to inject ev...

6.1CVSS6AI score0.00036EPSS

Exploits1References1Affected Software1

ATTACKERKB•added yesterday•2 views

CVE-2026-50146

7.1CVSS5.9AI score0.00029EPSS

Exploits1References2Affected Software1

CVE•added yesterday•10 views

CVE-2026-50146

CVE-2026-50146 affects the Astro web framework prior to 6.3.3. When a component uses a client:* directive, Astro inserts named slot content into a data-astro-template attribute without escaping the slot name, allowing an attacker to break out of the attribute context and inject arbitrary HTML, re...

7.1CVSS5.9AI score0.00029EPSS

Exploits1References1Affected Software1

Nuclei•added yesterday•12 views

Astro - Unauthorized Third-Party Image Access

Astro 5.13.2 and 4.16.18 contains an information disclosure vulnerability caused by improper validation of protocol-relative URLs in the image optimization endpoint, letting attackers serve images from unauthorized third-party domains, exploit requires on-demand rendering deployment. id:...

6.9CVSS5.8AI score0.00599EPSS

Exploits1References2

RedhatCVE•added 2026/06/05 7:36 p.m.•6 views

CVE-2026-41067

Astro is a web framework. Prior to 6.1.6, the defineScriptVars function in Astro's server-side rendering pipeline uses a case-sensitive regex //g to sanitize values injected into inline ,...

6.1CVSS5.4AI score0.00189EPSS

Exploits1References1

RedhatCVE•added 2026/05/14 7:58 p.m.•6 views

CVE-2026-45028

Astro is a web framework. Astro versions prior to 6.1.10 used AES-GCM encryption to protect the confidentiality and integrity of server island props and slots parameters, but did not bind the ciphertext to its intended component or parameter type. An attacker could replay one component's encrypte...

6.3CVSS5.8AI score0.00144EPSS

Exploits0References1

GithubExploit•added 2026/05/14 1:15 p.m.•66 views

portofolio_DWForSec

DwF — Cybersecurity Portfolio A professional cybersecurity po...

5.7AI score

Exploits0

NVD•added 2026/05/13 4:17 p.m.•12 views

CVE-2026-45028

6.3CVSS0.00144EPSS

Exploits0References3

Vulnrichment•added 2026/05/13 3:50 p.m.•2 views

CVE-2026-45028 Astro: Server island encrypted parameters vulnerable to cross-component replay

6.3CVSS5.8AI score0.00144EPSS

Exploits0References3

CNNVD•added 2026/05/13 12:0 a.m.•10 views

Astro 安全漏洞

Astro is a content-driven website framework developed by Astro OpenSource. Versions of Astro prior to 6.1.10 contained security vulnerabilities. These vulnerabilities stemmed from the use of AES-GCM encryption to protect server island attributes and slot parameters, where the ciphertext was not...

6.3CVSS5.7AI score0.00144EPSS

Exploits0References2

VulnCheck KEV•added 2026/04/30 12:0 a.m.•5 views

VulnCheck KEV: CVE-2025-58179

Astro is a web framework for content-driven websites. Versions 11.0.3 through 12.6.5 are vulnerable to SSRF when using Astro's Cloudflare adapter. When configured with output: 'server' while using the default imageService: 'compile', the generated image optimization endpoint doesn't check the URL...

7.2CVSS5.2AI score0.00773EPSS

In wildExploits1References2

RedhatCVE•added 2026/04/27 7:23 p.m.•0 views

CVE-2026-41248

Clerk JavaScript is the official JavaScript repository for Clerk authentication. createRouteMatcher in @clerk/nextjs, @clerk/nuxt, and @clerk/astro can be bypassed by certain crafted requests, allowing them to skip middleware gating and reach downstream handlers. This vulnerability is fixed in...

9.1CVSS5.2AI score0.00323EPSS

Exploits0References1

Vulnrichment•added 2026/04/24 9:4 p.m.•3 views

CVE-2026-41248 Official Clerk JavaScript SDKs: Middleware-based route protection bypass

9.1CVSS5.2AI score0.00323EPSS

Exploits0References1

NVD•added 2026/04/24 5:16 p.m.•2 views

CVE-2026-41067

Astro is a web framework. Prior to 6.1.6, the defineScriptVars function in Astro's server-side rendering pipeline uses a case-sensitive regex //g to sanitize values injected into inline tags via the define:vars directive. HTML parsers close elements case-insensitively and also accept whitespace o...

6.1CVSS0.00189EPSS

Exploits1References1

Vulnrichment•added 2026/04/24 4:57 p.m.•0 views

CVE-2026-41067 Astro: XSS via incomplete `</script>` sanitization in `define:vars` allows case-insensitive and whitespace-based bypass

6.1CVSS5.5AI score0.00189EPSS

Exploits1References1