Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/85594?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85594?format=api", "vulnerability_id": "VCID-9btn-s48k-c3cx", "summary": "A Server-Side Request Forgery (SSRF) vulnerability was identified in the @opennextjs/cloudflare package, resulting from a path normalization bypass in the /cdn-cgi/image/ handler.The @opennextjs/cloudflare worker template includes a /cdn-cgi/image/ handler intended for development use only. In production, Cloudflare's edge intercepts /cdn-cgi/image/ requests before they reach the Worker. However, by substituting a backslash for a forward slash (/cdn-cgi\\image/ instead of /cdn-cgi/image/), an attacker can bypass edge interception and have the request reach the Worker directly. The JavaScript URL class then normalizes the backslash to a forward slash, causing the request to match the handler and trigger an unvalidated fetch of arbitrary remote URLs.\n\nFor example: \n\n https://victim-site.com/cdn-cgi\\image/aaaa/https://attacker.com \n\nIn this example, attacker-controlled content from attacker.com is served through the victim site's domain (victim-site.com) violating the same-origin policy and potentially misleading users or other services.\n\nNote: This bypass only works via HTTP clients that preserve backslashes in paths (e.g., curl --path-as-is). Browsers normalize backslashes to forward slashes before sending requests.\n\nAdditionally, Cloudflare Workers with Assets and Cloudflare Pages suffer from a similar vulnerability. Assets stored under /cdn-cgi/ paths are not publicly accessible under normal conditions. However, using the same backslash bypass (/cdn-cgi\\... instead of /cdn-cgi/...), these assets become publicly accessible. This could be used to retrieve private data. For example, Open Next projects store incremental cache data under /cdn-cgi/_next_cache, which could be exposed via this bypass.", "aliases": [ { "alias": "CVE-2026-3125" }, { "alias": "GHSA-c7mq-gh6q-6q7c" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/40255?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.17.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.17.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/808824?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-698638", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-698638" }, { "url": "http://public2.vulnerablecode.io/api/packages/808825?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-5454280", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-5454280" }, { "url": "http://public2.vulnerablecode.io/api/packages/808826?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-9758666", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-9758666" }, { "url": "http://public2.vulnerablecode.io/api/packages/808827?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-11802c4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-11802c4" }, { "url": "http://public2.vulnerablecode.io/api/packages/808828?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-28d3ca1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-28d3ca1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808829?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-361f2b7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-361f2b7" }, { "url": "http://public2.vulnerablecode.io/api/packages/808830?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-3628be6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-3628be6" }, { "url": "http://public2.vulnerablecode.io/api/packages/808831?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-42320e7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-42320e7" }, { "url": "http://public2.vulnerablecode.io/api/packages/808832?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-42bf0ff", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-42bf0ff" }, { "url": "http://public2.vulnerablecode.io/api/packages/808833?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-5105d31", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-5105d31" }, { "url": "http://public2.vulnerablecode.io/api/packages/808834?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-59a1d9e", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-59a1d9e" }, { "url": "http://public2.vulnerablecode.io/api/packages/808835?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-88fe982", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-88fe982" }, { "url": "http://public2.vulnerablecode.io/api/packages/808836?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-953d0b1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-953d0b1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808837?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-9a03245", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-9a03245" }, { "url": "http://public2.vulnerablecode.io/api/packages/808838?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-9aff12e", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-9aff12e" }, { "url": "http://public2.vulnerablecode.io/api/packages/808839?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-a1eae5e", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-a1eae5e" }, { "url": "http://public2.vulnerablecode.io/api/packages/808840?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-acc0c5e", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-acc0c5e" }, { "url": "http://public2.vulnerablecode.io/api/packages/808841?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-af15fd1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-af15fd1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808842?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-b997312", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-b997312" }, { "url": "http://public2.vulnerablecode.io/api/packages/808843?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-cf5113b", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-cf5113b" }, { "url": "http://public2.vulnerablecode.io/api/packages/808844?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-e2c4535", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-e2c4535" }, { "url": "http://public2.vulnerablecode.io/api/packages/808845?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-e62af72", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-e62af72" }, { "url": "http://public2.vulnerablecode.io/api/packages/808846?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.0-fd3c2b9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.0-fd3c2b9" }, { "url": "http://public2.vulnerablecode.io/api/packages/808847?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/808848?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808849?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808850?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808851?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808852?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808853?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808854?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/808855?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/808856?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/808857?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/808858?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/808859?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/808860?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/808861?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/808862?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.3.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.3.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/808863?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808864?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808865?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/808866?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/808867?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/808868?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/808869?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/808870?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/808871?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/808872?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808873?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808874?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/808875?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/808876?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/808877?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/808878?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/808879?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/808880?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/808881?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/808882?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/808883?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/808884?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.5.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.5.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/808885?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808886?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808887?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/808888?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/808889?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/808890?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/808891?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@0.6.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@0.6.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/808892?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.0-beta.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.0-beta.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808893?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.0-beta.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.0-beta.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808894?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.0-beta.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.0-beta.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/808895?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.0-beta.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.0-beta.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/808896?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.0-beta.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.0-beta.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/808897?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808898?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/808899?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/808900?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/808901?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/808902?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808903?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/808904?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" }, { "vulnerability": "VCID-z39u-kj79-xug8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/378520?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957641?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957642?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957643?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957644?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957645?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/957646?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/957647?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957648?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957649?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/957650?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/957651?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/957652?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/957653?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957654?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957655?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957656?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957657?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.8.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/957658?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.8.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.8.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/957659?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.8.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.8.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/957660?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.8.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.8.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/957661?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957662?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.9.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957663?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.9.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.9.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/957664?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.10.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.10.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957665?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.10.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.10.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957666?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.11.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.11.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957667?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957668?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957669?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957670?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.13.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.13.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957671?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957672?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957673?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/957674?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/957675?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/957676?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/957677?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/957678?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/957679?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/957680?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/957681?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.14.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.14.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/957682?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.15.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.15.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957683?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.15.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.15.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957684?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.16.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.16.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/957685?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.16.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.16.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/957686?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.16.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.16.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/957687?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.16.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.16.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/957688?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.16.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.16.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/957689?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.16.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.16.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/957690?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.16.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.16.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/957691?format=api", "purl": "pkg:npm/%40opennextjs/cloudflare@1.17.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9btn-s48k-c3cx" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:npm/%2540opennextjs/cloudflare@1.17.0" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-3125", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01913", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01928", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01918", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01917", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-3125" }, { "reference_url": "https://github.com/opennextjs/opennextjs-cloudflare/commit/f5bd138fd3c77e02f2aa4b9c76d55681e59e98b4", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:H/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/opennextjs/opennextjs-cloudflare/commit/f5bd138fd3c77e02f2aa4b9c76d55681e59e98b4" }, { "reference_url": "https://github.com/opennextjs/opennextjs-cloudflare/pull/1147", "reference_id": "1147", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:H/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-04T18:58:41Z/" } ], "url": "https://github.com/opennextjs/opennextjs-cloudflare/pull/1147" }, { "reference_url": "https://www.npmjs.com/package/@opennextjs/cloudflare/v/1.17.1", "reference_id": "1.17.1", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:H/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-04T18:58:41Z/" } ], "url": "https://www.npmjs.com/package/@opennextjs/cloudflare/v/1.17.1" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3125", "reference_id": "CVE-2026-3125", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:H/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3125" }, { "reference_url": "https://www.cve.org/cverecord?id=CVE-2025-6087", "reference_id": "cverecord?id=CVE-2025-6087", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:H/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-04T18:58:41Z/" } ], "url": "https://www.cve.org/cverecord?id=CVE-2025-6087" }, { "reference_url": "https://github.com/advisories/GHSA-c7mq-gh6q-6q7c", "reference_id": "GHSA-c7mq-gh6q-6q7c", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-c7mq-gh6q-6q7c" }, { "reference_url": "https://github.com/opennextjs/opennextjs-cloudflare/security/advisories/GHSA-c7mq-gh6q-6q7c", "reference_id": "GHSA-c7mq-gh6q-6q7c", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:H/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/opennextjs/opennextjs-cloudflare/security/advisories/GHSA-c7mq-gh6q-6q7c" }, { "reference_url": "https://github.com/advisories/GHSA-rvpw-p7vw-wj3m", "reference_id": "GHSA-rvpw-p7vw-wj3m", "reference_type": "", "scores": [ { "value": "7.7", "scoring_system": "cvssv4", "scoring_elements": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:H/SI:N/SA:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-03-04T18:58:41Z/" } ], "url": "https://github.com/advisories/GHSA-rvpw-p7vw-wj3m" } ], "weaknesses": [ { "cwe_id": 706, "name": "Use of Incorrectly-Resolved Name or Reference", "description": "The product uses a name or reference to access a resource, but the name/reference resolves to a resource that is outside of the intended control sphere." }, { "cwe_id": 918, "name": "Server-Side Request Forgery (SSRF)", "description": "The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9btn-s48k-c3cx" }