CVE-2026-41321
LOW SEVERITYCVSS Score & Metrics
Base Score
2.2 / 10
Vulnerability Description
Cloudflare has SSRF via redirect following through its image-binding-transform endpoint (incomplete fix for GHSA-qpr4)
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
npm
Product
@astrojs/cloudflare
External References
- https://github.com/withastro/astro/security/advisories/GHSA-88gm-j2wx-58h6
- https://github.com/withastro/astro/commit/a43eb4b40b4f81530e3c9b5e2959495900320433
- https://github.com/advisories/GHSA-qpr4-c339-7vq8
- https://github.com/withastro/astro/releases/tag/%40astrojs%2Fcloudflare%4013.1.10
- https://github.com/advisories/GHSA-88gm-j2wx-58h6
Discussion (0)
Add Comment
No comments yet. Be the first!