VulnerableCode Package Details - pkg:npm/%40remix-run/server-runtime@0.0.0-nightly-c2f6bf4-20220609

Search for packages

Vulnerability	Summary	Fixed by
VCID-hwnh-8gqs-8fgj Aliases: CVE-2026-22030 GHSA-h5cw-625j-3rxh	React Router has CSRF issue in Action/Server Action Request Processing React Router (or Remix v2) is vulnerable to CSRF attacks on document POST requests to UI routes when using server-side route `action` handlers in [Framework Mode](https://reactrouter.com/start/modes#framework), or when using React Server Actions in the new unstable RSC modes. > [!NOTE] > This does not impact applications that use [Declarative Mode](https://reactrouter.com/start/modes#declarative) (`<BrowserRouter>`) or [Data Mode](https://reactrouter.com/start/modes#data) (`createBrowserRouter`/`<RouterProvider>`).	2.17.3 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-hwnh-8gqs-8fgj
Aliases:
CVE-2026-22030
GHSA-h5cw-625j-3rxh

React Router has CSRF issue in Action/Server Action Request Processing React Router (or Remix v2) is vulnerable to CSRF attacks on document POST requests to UI routes when using server-side route `action` handlers in [Framework Mode](https://reactrouter.com/start/modes#framework), or when using React Server Actions in the new unstable RSC modes. > [!NOTE] > This does not impact applications that use [Declarative Mode](https://reactrouter.com/start/modes#declarative) (`<BrowserRouter>`) or [Data Mode](https://reactrouter.com/start/modes#data) (`createBrowserRouter`/`<RouterProvider>`).

2.17.3
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-06T15:51:37.063970+00:00	GitLab Importer	Affected by	VCID-hwnh-8gqs-8fgj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@remix-run/server-runtime/CVE-2026-22030.yml	38.6.0
2026-04-29T22:49:02.652089+00:00	GitLab Importer	Affected by	VCID-hwnh-8gqs-8fgj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@remix-run/server-runtime/CVE-2026-22030.yml	38.5.0
2026-04-17T00:06:27.839681+00:00	GitLab Importer	Affected by	VCID-hwnh-8gqs-8fgj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@remix-run/server-runtime/CVE-2026-22030.yml	38.4.0
2026-04-12T01:29:48.359329+00:00	GitLab Importer	Affected by	VCID-hwnh-8gqs-8fgj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@remix-run/server-runtime/CVE-2026-22030.yml	38.3.0
2026-04-03T01:38:33.924021+00:00	GitLab Importer	Affected by	VCID-hwnh-8gqs-8fgj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/@remix-run/server-runtime/CVE-2026-22030.yml	38.1.0