Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

react-router

npm

Declarative routing for React

View on github.com · View on npmjs.org

Security Advisories for react-router in npm

High
11 days ago

React Router vulnerable to Denial of Service via reflected user input in single-fetch GSA_kwCzR0hTQS1yeHY4LTI1djItcW1xOM4ABYCx

npm turbo-stream, react-router
High
12 days ago

React Router vulnerable to DoS via unbounded path expansion in __manifest endpoint GSA_kwCzR0hTQS04eDZyLWc5bXctMnI3OM4ABYAz

npm @remix-run/server-runtime, react-router
High
12 days ago

React Router's vendored turbo-stream v2 allows arbitrary constructor invocation via TYPE_ERROR deserialization leading to Unauth RCE GSA_kwCzR0hTQS00OXJqLTlmdnAtNGgyaM4ABYAy

npm react-router
Moderate
12 days ago

React Router's same-origin redirect with path starting // causes open redirect via protocol-relative URL reinterpretation GSA_kwCzR0hTQS0yajJ4LWhxcjktM2g0Ms4ABYAv

npm react-router
High
12 days ago

React Router vulnerable to XSS in unstable RSC redirect handling via javascript: redirect targets GSA_kwCzR0hTQS04NjQ2LWo1ajktNnI2Ms4ABYAt

npm react-router
Moderate
12 days ago

React Router has stored XSS via unescaped Location header in prerendered redirect HTML GSA_kwCzR0hTQS1mMjJ2LWdmcWYtcDhmM84ABYAs

npm react-router
Moderate
5 months ago

React Router has CSRF issue in Action/Server Action Request Processing GSA_kwCzR0hTQS1oNWN3LTYyNWotM3J4aM4ABQ3b

npm @remix-run/server-runtime, react-router
High
5 months ago

React Router vulnerable to XSS via Open Redirects GSA_kwCzR0hTQS0ydzY5LXF2amctaHZqeM4ABQ3a

npm @remix-run/router, react-router
High
5 months ago

React Router SSR XSS in ScrollRestoration GSA_kwCzR0hTQS04djh4LWN4NzktMzV3N84ABQ3Z

npm @remix-run/react, react-router
Moderate
5 months ago

React Router has unexpected external redirect via untrusted paths GSA_kwCzR0hTQS05amN4LXYzd2otd2g0bc4ABQ3Y

npm react-router
High
5 months ago

React Router has XSS Vulnerability GSA_kwCzR0hTQS0zY2dwLTN4dnctOTh4OM4ABQ3W

npm @remix-run/react, react-router
High
about 1 year ago

React Router allows pre-render data spoofing on React-Router framework mode GSA_kwCzR0hTQS1jcGo2LWZocDYtbXI2as4ABHIx

npm react-router
High
about 1 year ago

React Router allows a DoS via cache poisoning by forcing SPA mode GSA_kwCzR0hTQS1mNDZyLXJ3MjktcjMyMs4ABHIw

npm react-router
Potential
High
about 1 year ago

Remix and React Router allow URL manipulation via Host / X-Forwarded-Host headers GSA_kwCzR0hTQS00cTU2LWNycXAtdjQ3N84ABGTY

npm @remix-run/express, @react-router/express

Filter by Severity

High 10 Moderate 4