Количество 2
Количество 2
CVE-2025-66415
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.
GHSA-2q7r-29rg-6m5h
fastify-reply-from affected by bypass of reply forwarding
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-66415 fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0. | CVSS3: 5.4 | 0% Низкий | 2 месяца назад |
| GHSA-2q7r-29rg-6m5h fastify-reply-from affected by bypass of reply forwarding | 0% Низкий | 2 месяца назад |
Уязвимостей на страницу