CNNVD-202601-1759 Information

CNNVD ID

CNNVD-202601-1759

Related CVE

CVE-2026-22030

• CNNVD Published: 2026-01-10

Description (Chinese)

react-router是Remix开源的一个 React 的声明式路由。 react-router 7.11.0及之前版本存在跨站请求伪造漏洞，该漏洞源于在使用服务器端路由操作处理程序时，容易受到针对文档POST请求的跨站请求伪造攻击。

Description (English)

React-router is a react path for Remix open source. React-router 7.1.1.0 and previous versions have a false gap in cross-site requests, which arises from the vulnerability of cross-site requests for false attacks against documents POST requests when using server end-line processing procedures.

Hazard Level

High

Vulnerability Type

跨站请求伪造

Affected Vendor

Remix

Published

2026-01-10

Last Modified

2026-02-24

References

https://github.com/remix-run/react-router/security/advisories/GHSA-h5cw-625j-3rxh

Patch

https://reactrouter.com/