Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

@sveltejs/kit

npm · SvelteKit is the fastest way to build Svelte apps · Repository · Package

Security Advisories for @sveltejs/kit in npm

Moderate
6 months ago

@sveltejs/kit vulnerable to Cross-site Scripting via tracked search_params GSA_kwCzR0hTQS02cTg3LTg0anctY2pocM4ABGwR

npm @sveltejs/kit
Low
10 months ago

@sveltejs/kit vulnerable to XSS on dev mode 404 page GSA_kwCzR0hTQS1yamp2LTg3bXgtNngzaM4ABBvG

npm @sveltejs/kit
Low
10 months ago

@sveltejs/kit has unescaped error message included on error page GSA_kwCzR0hTQS1taDJ4LWZjcWgtZm1xds4ABBvF

npm @sveltejs/kit
High
over 1 year ago

Sending a GET or HEAD request with a body crashes SvelteKit GSA_kwCzR0hTQS1nNW02LWh4cHAtZmM0Oc4AA4qX

npm @sveltejs/adapter-node, @sveltejs/kit
High
over 2 years ago

SvelteKit framework has Insufficient CSRF protection for CORS requests GSA_kwCzR0hTQS1ndjdnLXg1OXgtd2Y4Zs4AAyoO

npm @sveltejs/kit
High
over 2 years ago

SvelteKit vulnerable to Cross-Site Request Forgery GSA_kwCzR0hTQS01cDc1LXZjNWctOHJ2Ms4AAyiw

npm @sveltejs/kit

Filter by Severity

High 3 Low 2 Moderate 1