Search for packages
Package details: pkg:deb/debian/node-axios@1.2.1%2Bdfsg-1
purl pkg:deb/debian/node-axios@1.2.1%2Bdfsg-1
Tags Ghost
Next non-vulnerable version 1.8.4+dfsg-1
Latest non-vulnerable version 1.8.4+dfsg-1
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-hfp7-rkga-aaak
Aliases:
CVE-2023-45857
GHSA-wf5p-g6vw-rhxx
An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information.
1.2.1+dfsg-1+deb12u1
Affected by 1 other vulnerability.
1.6.8+dfsg-2
Affected by 0 other vulnerabilities.
1.7.7+dfsg-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-02-21T14:20:07.259351+00:00 Debian Importer Affected by VCID-hfp7-rkga-aaak None 35.1.0
2025-02-21T14:20:05.213575+00:00 Debian Importer Affected by VCID-hfp7-rkga-aaak https://security-tracker.debian.org/tracker/data/json 35.1.0
2024-11-24T03:26:37.955503+00:00 Debian Importer Affected by VCID-hfp7-rkga-aaak https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-10-11T00:51:04.121394+00:00 Debian Importer Affected by VCID-hfp7-rkga-aaak https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-09-20T05:21:41.328151+00:00 Debian Importer Affected by VCID-hfp7-rkga-aaak https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-04-26T05:48:44.950766+00:00 Debian Importer Affected by VCID-hfp7-rkga-aaak None 34.0.0rc4
2024-04-26T05:48:43.392050+00:00 Debian Importer Affected by VCID-hfp7-rkga-aaak https://security-tracker.debian.org/tracker/data/json 34.0.0rc4