@4399ywkf/router (>=0.0.1 <=0.0.4), @akash-aw/aw-wizard-forms (=4.14.0) +155 more potentially affected by CVE-2026-23869 via @modern-js/utils (>=2.65.2 <=2.70.4)

@modern-js/utils NPM version =2.65.2, =0.0.1, =1.0.0, =1.0.0, =0.44.0, =2.23.0, =0.3.53, =0.0.0-beta.1, =1.0.1, =0.30.0, =0.3.0, =0.3.0-alpha.1 and more Source cves: CVE-2026-23869 Source advisory: SNYK:JS-MODERNJSUTILS-15954203...

Deserialization of Untrusted Data

Overview @modern-js/utils is a progressive web framework based on React. Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to unsafe deserialization of payloads from HTTP requests to Server Function endpoints. An attacker can cause the server process to ent...

@4399ywkf/router (>=0.0.1 <=0.0.4), @akash-aw/aw-wizard-forms (=4.14.0) +121 more potentially affected by CVE-2025-55183 +1 more via @modern-js/utils (>=2.65.2 <=2.69.2)

@modern-js/utils NPM version =2.65.2, =0.0.1, =1.0.0, =1.0.0, =0.44.0, =2.23.0, =0.3.53, =1.0.1, =0.30.0, =0.3.0, =1.3.0, =3.0.0, =0.1.0-next.717, =3.0.0 and more Source cves: CVE-2025-55183, CVE-2025-55184 Source advisory: SNYK:JS-MODERNJSUTILS-15120606...

@4399ywkf/router (>=0.0.1 <=0.0.4), @akash-aw/aw-wizard-forms (=4.14.0) +121 more potentially affected by CVE-2025-55182 via @modern-js/utils (>=2.65.2 <=2.69.2)

@modern-js/utils NPM version =2.65.2, =0.0.1, =1.0.0, =1.0.0, =0.44.0, =2.23.0, =0.3.53, =1.0.1, =0.30.0, =0.3.0, =1.3.0, =3.0.0, =0.1.0-next.717, =3.0.0 and more Source cves: CVE-2025-55182 Source advisory: SNYK:JS-MODERNJSUTILS-14723360...