Vulnerabilities > Axios

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-08	CVE-2023-45857	Cross-Site Request Forgery (CSRF) vulnerability in Axios 1.5.1 An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information. network low complexity axios CWE-352	6.5
2021-08-31	CVE-2021-3749	axios is vulnerable to Inefficient Regular Expression Complexity network low complexity axios siemens oracle	7.5
2020-11-06	CVE-2020-28168	Server-Side Request Forgery (SSRF) vulnerability in multiple products Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address. network high complexity axios siemens CWE-918	5.9
2019-05-07	CVE-2019-10742	Improper Input Validation vulnerability in Axios Axios up to and including 0.18.0 allows attackers to cause a denial of service (application crash) by continuing to accepting content after maxContentLength is exceeded. network low complexity axios CWE-20	5.0

Vulnerabilities > Axios {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Axios"}]}