All vulnerabilities
9 / 9
Sort
6.9
CVE-2026-25545CVE
Astro is a web framework. Prior to version 9.5.4, Server-Side Rendered pages that return an err…
2026-01-01Pre-auth
EPSS1.8%
pct 75
7.5
CVE-2026-27729CVE
Astro is a web framework. In versions 9.0.0 through 9.5.3, Astro server actions have no default…
2026-01-01Pre-auth
EPSS0.4%
pct 33
7.5
CVE-2026-29772ANC
Astro is a web framework. Prior to version 10.0.0, Astro's Server Islands POST handler buffers …
2026-01-01Pre-auth
EPSS0.4%
pct 28
9.1
CVE-2026-33768ANC
Astro is a web framework. Prior to version 10.0.2, the @astrojs/vercel serverless entrypoint re…
2026-01-01Pre-auth
EPSS0.3%
pct 24
2.9
CVE-2026-33769ANC
Astro is a web framework. From version 2.10.10 to before version 5.18.1, this issue concerns As…
2026-01-01Pre-auth
EPSS0.3%
pct 24
7.2
CVE-2026-27829ANC
Astro is a web framework. In versions 9.0.0 through 9.5.3, a bug in Astro's image pipeline allo…
2026-01-01Pre-auth
EPSS0.3%
pct 19
5.3
CVE-2026-41322ANC
@astrojs/node allows Astro to deploy your SSR site to Node targets. Prior to 10.0.5, requesting…
2026-01-01Pre-auth
EPSS0.2%
pct 14
6.1
CVE-2026-41067ANC
Astro is a web framework. Prior to 6.1.6, the defineScriptVars function in Astro's server-side …
2026-01-01Pre-auth
EPSS0.2%
pct 8
2.9
CVE-2026-45028ANC
Astro is a web framework. Astro versions prior to 6.1.10 used AES-GCM encryption to protect the…
2026-01-01Pre-auth
EPSS0.1%
pct 4
Select a vulnerability on the left to open the preview.