Skip to main content

Sveltekit

4 CVEs product

Monthly

CVE-2024-53262 npm LOW PATCH Monitor

SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Rated low severity (CVSS 2.0), this vulnerability is remotely exploitable. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Sveltekit
NVD GitHub
CVSS 4.0
2.0
EPSS
0.5%
CVE-2024-53261 npm LOW PATCH Monitor

SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Rated low severity (CVSS 2.0), this vulnerability is remotely exploitable. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Sveltekit
NVD GitHub
CVSS 4.0
2.0
EPSS
0.3%
CVE-2023-29008 npm HIGH PATCH This Week

The SvelteKit framework offers developers an option to create simple REST APIs. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

Google SSRF Apple Authentication Bypass Mozilla +2
NVD GitHub
CVSS 3.1
8.8
EPSS
0.4%
CVE-2023-29003 npm HIGH POC PATCH This Week

SvelteKit is a web development framework. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass CSRF Sveltekit
NVD GitHub
CVSS 3.1
8.8
EPSS
0.6%
EPSS 0% CVSS 2.0
LOW PATCH Monitor

SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Rated low severity (CVSS 2.0), this vulnerability is remotely exploitable. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Sveltekit
NVD GitHub
EPSS 0% CVSS 2.0
LOW PATCH Monitor

SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Rated low severity (CVSS 2.0), this vulnerability is remotely exploitable. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Information Disclosure Sveltekit
NVD GitHub
EPSS 0% CVSS 8.8
HIGH PATCH This Week

The SvelteKit framework offers developers an option to create simple REST APIs. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

Google SSRF Apple +4
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC PATCH This Week

SvelteKit is a web development framework. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass CSRF Sveltekit
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy