@astrojs/node vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-41322Medium@astrojs/node: Astro: Cache Poisoning due to incorrect error handling when if-match header is malformed CVE-2026-29772Medium@astrojs/node: Astro: Memory exhaustion DoS due to missing request body size limit in Server IslandsCVE-2026-27729Medium@astrojs/node: Astro has memory exhaustion DoS due to missing request body size limit in Server ActionsCVE-2026-27829Medium@astrojs/node: Astro is vulnerable to SSRF due to missing allowlist enforcement in remote image inferSizeCVE-2026-25545Medium@astrojs/node: Astro has Full-Read SSRF in error rendering via Host: header injectionCVE-2025-55303Medium@astrojs/node: Astro allows unauthorized third-party images in _image endpointCVE-2025-55207Medium@astrojs/node: @astrojs/node's trailing slash handling causes open redirect issue

Stop the waste.
Protect your environment with Kodem.