axios Latest Vulnerabilities
Latest vulnerabilities published by axios
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Axios: Proxy-Authorization header leaks to redirect target when proxy is re-evaluated to direct connection
CVE-2026-44486AxiOSAxiOS7.5HIGHAxios: Proxy-Authorization Credential Leak to Origin Server Across HTTP-to-HTTPS Redirect in Axios Node.js HTTP Adapter
CVE-2026-44487AxiOSAxiOS8.2HIGHAxios: Allocation of Resources Without Limits or Throttling in axios
CVE-2026-44488AxiOSAxiOS7.5HIGHAxios: DoS & Header Injection via Prototype Pollution Read-Side Gadgets in axios merge functions
CVE-2026-44490AxiOSAxiOS4.8MEDIUMAxios: Regular Expression Denial of Service (ReDoS) via Cookie Name Injection
CVE-2026-44496AxiOSAxiOS7.5HIGHAxios: Credential Theft and Response Hijacking via Prototype Pollution Gadget in Config Merge
CVE-2026-44495AxiOSAxiOS7HIGHAxios: Full Man-in-the-Middle via Prototype Pollution Gadget in `config.proxy`
CVE-2026-44494AxiOSAxiOS8.7HIGHAxios: Proxy-Authorization Header Injection via Prototype Pollution β Incomplete Null-Prototype Fix
CVE-2026-44489AxiOSAxiOS3.7LOWAxios: shouldBypassProxy does not recognize IPv4-mapped IPv6 addresses, allowing NO_PROXY bypass (incomplete fix for CVE-2025-62718)
CVE-2026-44492AxiOSAxiOS8.6HIGHPrototype Pollution Vulnerability in Axios HTTP Client by Axios
CVE-2026-42264AxiOSAxiOS7.4HIGHXSRF Token Protection Flaw in Axios HTTP Client Affects Multiple Versions
CVE-2026-42042AxiOSAxiOS5.4MEDIUMRangeError Crash in Axios HTTP Client for Browser and Node.js
CVE-2026-42039AxiOSAxiOS6.9MEDIUMUnbounded Response Stream in Axios HTTP Client
CVE-2026-42036AxiOSAxiOS5.3MEDIUMHTTP Client Oversized Stream Handling Vulnerability in Axios
CVE-2026-42034AxiOSAxiOS5.3MEDIUMCode Injection Vulnerability in Axios HTTP Client
CVE-2026-42037AxiOSAxiOS5.3MEDIUMIncomplete proxy bypass in Axios HTTP client by Axios
CVE-2026-42038AxiOSAxiOS6.8MEDIUMPrototype Pollution Vulnerability in Axios HTTP Client
CVE-2026-42041AxiOSAxiOS4.8MEDIUMHTTP Client Vulnerability in Axios Affects Browsers and Node.js
CVE-2026-42043AxiOSAxiOS7.2HIGHPrototype Pollution Vulnerability in Axios HTTP Client
CVE-2026-42044AxiOSAxiOS6.5MEDIUMNull Byte Encoding Issue in Axios HTTP Client
CVE-2026-42040AxiOSAxiOS3.7LOWPrototype Pollution Vulnerability in Axios HTTP Client
CVE-2026-42035AxiOSAxiOS7.4HIGHPrototype Pollution in Axios HTTP Client Affecting Multiple Versions
CVE-2026-42033AxiOSAxiOS7.4HIGHPrototype Pollution and Remote Code Execution Vulnerability in Axios HTTP Client
CVE-2026-40175AxiOSAxiOSππΎπ‘4.8MEDIUMProxy Bypass in Axios HTTP Client Affects Internal Connections
CVE-2025-62718AxiOSAxiOS6.3MEDIUMState Corruption Vulnerability in Axios HTTP Client Affects Browser and Node.js
CVE-2026-39865AxiOSAxiOS5.9MEDIUM