CNNVD-202601-2576 Information

CNNVD ID

CNNVD-202601-2576

Related CVE

CVE-2025-67647

• CNNVD Published: 2026-01-15

Description (Chinese)

SvelteKit是Svelte开源的一套Web 开发框架。 SvelteKit 2.49.5之前版本存在代码问题漏洞，该漏洞源于特定条件下存在缺陷，可能导致服务器端请求伪造和拒绝服务。

Description (English)

SvelteKit is a set of Web development frameworks for Svelte open source. Prior to SvelteKit 2.49.5, there was a code problem loophole, which stemmed from deficiencies under certain conditions that could lead to server requests for forgery and denial of services.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Svelte

Published

2026-01-15

Last Modified

2026-02-24

References

https://github.com/sveltejs/kit/commit/d9ae9b00b14f5574d109f3fd548f960594346226 https://github.com/sveltejs/kit/security/advisories/GHSA-j62c-4x62-9r35

Patch

https://github.com/sveltejs/kit/releases