Package impact
npm / vite
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-39364 | high | 7.5 | 7.5 | 2mo ago | Vite: `server.fs.deny` bypassed with queries | |||
| CVE-2026-39363 | high | 7.5 | 7.5 | 2mo ago | Vite Vulnerable to Arbitrary File Read via Vite Dev Server WebSocket |