Sveltekit Security Vulnerabilities and Issues — Sveltekit CVE List

Lucene search

SvelteSveltekit

4 matches found

CVE•added 2023/04/06 5:15 p.m.•67 views

CVE-2023-29008

The SvelteKit framework offers developers an option to create simple REST APIs. This is done by defining a +server.js file, containing endpoint handlers for different HTTP methods. SvelteKit provides out-of-the-box cross-site request forgery (CSRF) protection to its users. The protection is impleme...

8.8CVSS8.9AI score0.00139EPSS

CVE•added 2023/04/04 10:15 p.m.•64 views

CVE-2023-29003

SvelteKit is a web development framework. The SvelteKit framework offers developers an option to create simple REST APIs. This is done by defining a +server.js file, containing endpoint handlers for different HTTP methods. SvelteKit provides out-of-the-box cross-site request forgery (CSRF) protecti...

8.8CVSS8.9AI score0.00411EPSS

CVE•added 2024/11/25 8:15 p.m.•44 views

CVE-2024-53261

SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. "Unsanitized input from the request URL flows into end, where it is used to render an HTML page returned to the user. This may result in a Cross-Site Scripting attack (XSS)." The files packages/kit/src...

5.4CVSS5.7AI score0.00065EPSS

CVE•added 2024/11/25 8:15 p.m.•43 views

CVE-2024-53262

SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. The static error.html template for errors contains placeholders that are replaced without escaping the content first. error.html is the page that is rendered when everything else fails. It can contain ...

5.4CVSS7.1AI score0.00032EPSS