Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/react-router@6.30.2
purl pkg:npm/react-router@6.30.2
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-2bdv-sysu-ryef React Router has unexpected external redirect via untrusted paths An attacker-supplied path can be crafted so that when a React Router application navigates to it via `navigate()`, `<Link>`, or `redirect()`, the app performs a navigation/redirect to an external URL. This is only an issue if developers pass untrusted content into navigation paths in their application code. CVE-2025-68470
GHSA-9jcx-v3wj-wh4m

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-29T22:49:09.117277+00:00 GitLab Importer Fixing VCID-2bdv-sysu-ryef https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/react-router/CVE-2025-68470.yml 38.5.0
2026-04-17T00:06:33.657502+00:00 GitLab Importer Fixing VCID-2bdv-sysu-ryef https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/react-router/CVE-2025-68470.yml 38.4.0
2026-04-12T01:29:55.371761+00:00 GitLab Importer Fixing VCID-2bdv-sysu-ryef https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/react-router/CVE-2025-68470.yml 38.3.0
2026-04-03T01:38:41.122068+00:00 GitLab Importer Fixing VCID-2bdv-sysu-ryef https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/react-router/CVE-2025-68470.yml 38.1.0
2026-04-01T16:07:31.262518+00:00 GHSA Importer Fixing VCID-2bdv-sysu-ryef https://github.com/advisories/GHSA-9jcx-v3wj-wh4m 38.0.0
2026-04-01T12:53:37.446359+00:00 GitLab Importer Fixing VCID-2bdv-sysu-ryef https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/react-router/CVE-2025-68470.yml 38.0.0
2026-04-01T12:52:23.279569+00:00 GithubOSV Importer Fixing VCID-2bdv-sysu-ryef https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/01/GHSA-9jcx-v3wj-wh4m/GHSA-9jcx-v3wj-wh4m.json 38.0.0