Lucene search
K

5 matches found

vulnersOsv
vulnersOsv
added 2026/06/04 3:23 p.m.5 views

@accounter/client (>=0.0.3 <=0.0.11-alpha-20260404002702-9340365def1af08a5cdbbf734a87d1d4839bdaff), @asamanvay/auth-service (>=0.0.2 <=0.0.4) +122 more potentially affected by CVE-2026-34077 via react-router (>=7.0.0 <=7.14.0-pre.0)

react-router NPM version =7.0.0, =0.0.3, =0.0.2, =3.5.2, =1.1.0, =1.0.1-MON-198808-web-js-deps-batch-1.0, =0.0.1, =3.4.9, =0.1.9, =1.27.1, =1.27.1, =0.3.1, =7.13.1-depup.0, =7.13.2-depup.0 and more Source cves: CVE-2026-34077 Source advisory: OSV:GHSA-RXV8-25V2-QMQ8...

7.5CVSS5.4AI score0.00294EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/04 2:24 a.m.7 views

SUSE CVE-2026-42342

React Router is a router for React. In versions 7.0.0 through 7.14.x of react-router and versions 2.10.0 through 2.17.4 of @remix-run/server-runtime, certain crafted requests can consume disproportionate server resources via unbounded path expansion in the manifest endpoint, resulting in response...

7.5CVSS5.8AI score0.00299EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/06/03 9:5 p.m.5 views

@accounter/client (>=0.0.3 <=0.0.12-alpha-20260508071110-20f5becdec9522d09c6a97f123f7c572407661fb), @appigram/react-code-split-ssr (>=1.3.7 <=1.3.8) +229 more potentially affected by CVE-2026-42342 via react-router (>=7.0.0 <=7.14.2)

react-router NPM version =7.0.0, =0.0.3, =1.3.7, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.0.2, =3.5.2, =1.1.0, =1.0.1-MON-198808-web-js-deps-batch-1.0, =0.0.1, =1.1.0 and more Source cves: CVE-2026-42342 Source advisory: OSV:GHSA-8X6R-G9MW-2R78...

7.5CVSS5.4AI score0.00299EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/04/24 4:31 p.m.8 views

10xanswers (>=1.1.0 <=1.1.16), 31g-form-parser (=1.0.107) +3358 more potentially affected by CVE-2025-43865 via react-router (>=7.0.0-pre.0 <=7.5.1)

react-router NPM version =7.0.0-pre.0, =1.1.0, =1.0.0, =0.0.6, =0.0.1, =0.1.0, =3.1.0-beta.1, =1.0.0, =0.0.2, =1.0.0, =1.0.1, =5.0.8 and more Source cves: CVE-2025-43865 Source advisory: OSV:GHSA-CPJ6-FHP6-MR6J...

8.2CVSS6.5AI score0.00737EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.10 views

PT-2025-14377 · Express +2 · Express +2

Name of the Vulnerable Software and Affected Versions: React Router versions 7.0.0 through 7.4.0 Remix versions 2.11.1 and later, prior to 2.16.3 Description: The issue allows anyone to spoof the URL used in an incoming Request by putting a URL pathname in the port section of a URL that is part o...

7.5CVSS7.3AI score0.01128EPSS
Exploits0References25
Rows per page
Query Builder