Lucene search
K

416 matches found

CVE
CVE
added 2026/02/25 4:40 p.m.21 views

CVE-2026-27738

CVE-2026-27738 describes an open redirect in Angular SSR’s internal URL processing. In affected Angular SSR versions on the 19.x branch prior to 19.2.21, 20.x prior to 20.3.17, and 21.x prior to 21.1.5 and 21.2.0-rc.1, the logic that normalizes URL segments by stripping a single leading slash can...

6.9CVSS5.6AI score0.00302EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/02/25 4:6 a.m.5 views

CVE-2026-25545

Astro is a web framework. Prior to version 9.5.4, Server-Side Rendered pages that return an error with a prerendered custom error page eg. 404.astro or 500.astro are vulnerable to SSRF. If the Host: header is changed to an attacker's server, it will be fetched on /500.html and they can redirect...

8.6CVSS5.5AI score0.01414EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.5 views

PT-2026-21966

Name of the Vulnerable Software and Affected Versions Angular SSR versions prior to 21.2.0-rc.1, 21.1.5, 20.3.17, and 19.2.21 Description Angular SSR, a server-side rendering tool for Angular applications, contains a Server-Side Request Forgery SSRF issue in its request handling pipeline. The...

9.2CVSS7.4AI score0.00497EPSS
Exploits1References22
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.5 views

PT-2026-21961

Name of the Vulnerable Software and Affected Versions Angular SSR versions 19.x through 19.2.20 Angular SSR versions 20.x through 20.3.16 Angular SSR versions 21.x through 21.1.4 Angular SSR version 21.2.0-rc.0 Description An Open Redirect issue exists in the internal URL processing logic of...

6.9CVSS5.2AI score0.00302EPSS
Exploits0References14
Cvelist
Cvelist
added 2026/02/24 12:46 a.m.22 views

CVE-2026-27729 Astro has memory exhaustion DoS due to missing request body size limit in Server Actions

Astro is a web framework. In versions 9.0.0 through 9.5.3, Astro server actions have no default request body size limit, which can lead to memory exhaustion DoS. A single large POST to a valid action endpoint can crash the server process on memory-constrained deployments. On-demand rendered sites...

5.9CVSS0.00415EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/24 12:37 a.m.22 views

CVE-2026-25545 Astro has Full-Read SSRF in error rendering via Host: header injection

Astro is a web framework. Prior to version 9.5.4, Server-Side Rendered pages that return an error with a prerendered custom error page eg. 404.astro or 500.astro are vulnerable to SSRF. If the Host: header is changed to an attacker's server, it will be fetched on /500.html and they can redirect...

6.9CVSS0.01414EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/02/24 12:37 a.m.5 views

CVE-2026-25545 Astro has Full-Read SSRF in error rendering via Host: header injection

Astro is a web framework. Prior to version 9.5.4, Server-Side Rendered pages that return an error with a prerendered custom error page eg. 404.astro or 500.astro are vulnerable to SSRF. If the Host: header is changed to an attacker's server, it will be fetched on /500.html and they can redirect...

6.9CVSS5.5AI score0.01414EPSS
Exploits1References3
CVE
CVE
added 2026/02/24 12:37 a.m.12 views

CVE-2026-25545

Astro SSRF in error rendering via Host header (CVE-2026-25545). Affected: Astro until version 9.5.4 and @astrojs/node before 9.5.4. Vulnerability arises when SSR error pages (e.g., 404/500) prerendered content fetches a URL constructed from the Host header, enabling an attacker to redirect to int...

8.6CVSS5.4AI score0.01414EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.10 views

Astro 代码问题漏洞

Astro is a content-driven website framework developed by Astro OpenSource. Versions of Astro prior to 9.5.4 had code vulnerabilities. These vulnerabilities stemmed from server-side rendering of pages, where errors were handled through server-side request forgeing, potentially allowing attackers t...

8.6CVSS5.9AI score0.01414EPSS
Exploits1References3
OSV
OSV
added 2026/02/23 9:54 p.m.6 views

GHSA-QQ67-MVV5-FW3G Astro has Full-Read SSRF in error rendering via Host: header injection

Summary Server-Side Rendered pages that return an error with a prerendered custom error page eg. 404.astro or 500.astro are vulnerable to SSRF. If the Host: header is changed to an attacker's server, it will be fetched on /500.html and they can redirect this to any internal URL to read the respon...

8.6CVSS5.7AI score0.01414EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/02/23 9:54 p.m.10 views

Astro has Full-Read SSRF in error rendering via Host: header injection

Summary Server-Side Rendered pages that return an error with a prerendered custom error page eg. 404.astro or 500.astro are vulnerable to SSRF. If the Host: header is changed to an attacker's server, it will be fetched on /500.html and they can redirect this to any internal URL to read the respon...

8.6CVSS5.6AI score0.01414EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2026/02/20 11:16 p.m.9 views

CVE-2026-27121

svelte performance oriented web framework. Versions of svelte prior to 5.51.5 are vulnerable to cross-site scripting XSS during server-side rendering. When using spread syntax to render attributes from untrusted data, event handler properties are included in the rendered HTML output. If an...

5.4CVSS0.00189EPSS
Exploits0References1
NVD
NVD
added 2026/02/20 11:16 p.m.7 views

CVE-2026-27119

svelte performance oriented web framework. From 5.39.3, element does not properly escape its content, potentially allowing HTML injection in the SSR output. Client-side rendering is not affected. This vulnerability is fixed in 5.51.5...

5.4CVSS0.00182EPSS
Exploits0References1
NVD
NVD
added 2026/02/20 11:16 p.m.11 views

CVE-2026-27122

svelte performance oriented web framework. Prior to 5.51.5, when using in server-side rendering, the provided tag name is not validated or sanitized before being emitted into the HTML output. If the tag string contains unexpected characters, it can result in HTML injection in the SSR output...

5.4CVSS0.00189EPSS
Exploits0References1
NVD
NVD
added 2026/02/20 11:16 p.m.10 views

CVE-2026-27125

svelte performance oriented web framework. Prior to 5.51.5, in server-side rendering, attribute spreading on elements e.g. enumerates inherited properties from the object's prototype chain rather than only own properties. In environments where Object.prototype has already been polluted — a...

6.8CVSS0.00377EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/20 10:29 p.m.5 views

CVE-2026-27125 Svelte SSR attribute spreading includes inherited properties from prototype chain

svelte performance oriented web framework. Prior to 5.51.5, in server-side rendering, attribute spreading on elements e.g. enumerates inherited properties from the object's prototype chain rather than only own properties. In environments where Object.prototype has already been polluted — a...

5.3CVSS5.4AI score0.00377EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/20 10:29 p.m.21 views

CVE-2026-27125 Svelte SSR attribute spreading includes inherited properties from prototype chain

svelte performance oriented web framework. Prior to 5.51.5, in server-side rendering, attribute spreading on elements e.g. enumerates inherited properties from the object's prototype chain rather than only own properties. In environments where Object.prototype has already been polluted — a...

5.3CVSS0.00377EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/20 10:29 p.m.9 views

CVE-2026-27125

svelte performance oriented web framework. Prior to 5.51.5, in server-side rendering, attribute spreading on elements e.g. enumerates inherited properties from the object's prototype chain rather than only own properties. In environments where Object.prototype has already been polluted — a...

5.3CVSS5.6AI score0.00377EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/02/20 10:29 p.m.36 views

CVE-2026-27125

Svelte SSR vulnerability CVE-2026-27125 affects the framework prior to version 5.51.5 where attribute spreading () enumerates inherited properties from the prototype chain, potentially leaking attributes or causing SSR failures when Object.prototype is polluted. Client-side rendering is unaffecte...

6.8CVSS5.6AI score0.00377EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/02/20 10:29 p.m.5 views

CVE-2026-27125 Svelte SSR attribute spreading includes inherited properties from prototype chain

svelte performance oriented web framework. Prior to 5.51.5, in server-side rendering, attribute spreading on elements e.g. enumerates inherited properties from the object's prototype chain rather than only own properties. In environments where Object.prototype has already been polluted — a...

5.3CVSS5.5AI score0.00377EPSS
Exploits0References5
Rows per page
Query Builder