Vulnerabilities > Axios

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-12	CVE-2024-39338	Server-Side Request Forgery (SSRF) vulnerability in Axios 1.5.1 axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs. network low complexity axios CWE-918	7.5
2023-11-08	CVE-2023-45857	Cross-Site Request Forgery (CSRF) vulnerability in Axios 1.5.1 An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information. network low complexity axios CWE-352	6.5
2021-08-31	CVE-2021-3749	axios is vulnerable to Inefficient Regular Expression Complexity network low complexity axios siemens oracle	7.5
2020-11-06	CVE-2020-28168	Server-Side Request Forgery (SSRF) vulnerability in multiple products Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address. network high complexity axios siemens CWE-918	5.9
2019-05-07	CVE-2019-10742	Improper Handling of Exceptional Conditions vulnerability in Axios Axios up to and including 0.18.0 allows attackers to cause a denial of service (application crash) by continuing to accepting content after maxContentLength is exceeded. network low complexity axios CWE-755	7.5

Vulnerabilities > Axios {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Axios"}]}