Skip to main content

Opennext For Cloudflare

2 CVEs product

Monthly

CVE-2026-3125 npm MEDIUM PATCH This Month

The @opennextjs/cloudflare package is vulnerable to Server-Side Request Forgery (SSRF) through a path normalization bypass in the /cdn-cgi/image/ handler, where attackers can use backslash substitution to evade edge interception and trigger arbitrary remote URL fetches. This affects production deployments that rely on Cloudflare's edge to block such requests, allowing attackers to access internal resources or perform outbound requests to attacker-controlled servers. A patch is available.

SSRF Opennext For Cloudflare Cloudflare
NVD GitHub
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-6087 npm CRITICAL PATCH Act Now

A remote code execution vulnerability (CVSS 9.1). Critical severity with potential for significant impact on affected systems.

SSRF Next.js Node.js Information Disclosure Opennext For Cloudflare +2
NVD GitHub
CVSS 3.1
9.1
EPSS
0.4%
EPSS 0% CVSS 6.5
MEDIUM PATCH This Month

The @opennextjs/cloudflare package is vulnerable to Server-Side Request Forgery (SSRF) through a path normalization bypass in the /cdn-cgi/image/ handler, where attackers can use backslash substitution to evade edge interception and trigger arbitrary remote URL fetches. This affects production deployments that rely on Cloudflare's edge to block such requests, allowing attackers to access internal resources or perform outbound requests to attacker-controlled servers. A patch is available.

SSRF Opennext For Cloudflare Cloudflare
NVD GitHub
EPSS 0% CVSS 9.1
CRITICAL PATCH Act Now

A remote code execution vulnerability (CVSS 9.1). Critical severity with potential for significant impact on affected systems.

SSRF Next.js Node.js +4
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy