Search for packages
Package details: pkg:npm/axios@0.26.0
purl pkg:npm/axios@0.26.0
Next non-vulnerable version 0.30.0
Latest non-vulnerable version 1.8.2
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-9kzj-nmnp-nbe3
Aliases:
CVE-2025-27152
GHSA-jr5f-v2jv-69x6
axios: Possible SSRF and Credential Leakage via Absolute URL in axios Requests
0.30.0
Affected by 0 other vulnerabilities.
1.0.0-alpha.1
Affected by 1 other vulnerability.
1.8.2
Affected by 0 other vulnerabilities.
VCID-hfp7-rkga-aaak
Aliases:
CVE-2023-45857
GHSA-wf5p-g6vw-rhxx
An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information.
0.28.0
Affected by 1 other vulnerability.
1.0.0-alpha.1
Affected by 1 other vulnerability.
1.6.0
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-bnke-ggs1-aaac Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository axios/axios prior to 0.26. CVE-2022-1214

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:17:34.422631+00:00 GitLab Importer Affected by VCID-9kzj-nmnp-nbe3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2025-27152.yml 36.1.3
2025-06-20T16:47:25.219888+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 36.1.3
2025-06-20T15:38:22.979058+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 36.1.3
2025-06-03T23:52:42.026516+00:00 GitLab Importer Affected by VCID-9kzj-nmnp-nbe3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2025-27152.yml 36.1.0
2025-06-03T23:25:12.505207+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 36.1.0
2025-06-03T22:18:39.809584+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 36.1.0
2025-06-02T23:51:31.705715+00:00 GitLab Importer Affected by VCID-9kzj-nmnp-nbe3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2025-27152.yml 36.1.2
2025-06-02T23:22:43.221752+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 36.1.2
2025-06-02T22:07:15.298557+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 36.1.2
2025-04-09T00:22:55.377736+00:00 GitLab Importer Affected by VCID-9kzj-nmnp-nbe3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2025-27152.yml 36.0.0
2025-04-03T21:43:59.781323+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 36.0.0
2025-04-03T19:33:49.103789+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 36.0.0
2025-02-18T03:39:12.911457+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 35.1.0
2025-01-16T23:28:25.735418+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 35.1.0
2024-11-21T00:58:39.949707+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 35.0.0
2024-11-19T00:40:18.117797+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 34.3.2
2024-10-08T01:19:16.774429+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 34.0.2
2024-10-07T21:45:23.158837+00:00 GHSA Importer Affected by VCID-hfp7-rkga-aaak https://github.com/advisories/GHSA-wf5p-g6vw-rhxx 34.0.2
2024-09-23T01:24:54.449648+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 34.0.1
2024-09-22T22:14:49.293576+00:00 GHSA Importer Affected by VCID-hfp7-rkga-aaak https://github.com/advisories/GHSA-wf5p-g6vw-rhxx 34.0.1
2024-05-17T20:52:49.957529+00:00 GHSA Importer Affected by VCID-hfp7-rkga-aaak https://github.com/advisories/GHSA-wf5p-g6vw-rhxx 34.0.0rc4
2024-05-17T20:52:49.149410+00:00 GHSA Importer Affected by VCID-hfp7-rkga-aaak None 34.0.0rc4
2024-04-24T03:54:48.690043+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 34.0.0rc4
2024-04-24T02:23:07.925353+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 34.0.0rc4
2024-01-10T06:35:29.655203+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 34.0.0rc2
2024-01-10T04:58:01.116339+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 34.0.0rc2
2024-01-10T03:00:04.543938+00:00 GHSA Importer Affected by VCID-hfp7-rkga-aaak https://github.com/advisories/GHSA-wf5p-g6vw-rhxx 34.0.0rc2
2024-01-10T03:00:04.090232+00:00 GHSA Importer Affected by VCID-hfp7-rkga-aaak None 34.0.0rc2
2024-01-03T23:21:54.023768+00:00 GitLab Importer Affected by VCID-hfp7-rkga-aaak https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/axios/CVE-2023-45857.yml 34.0.0rc1
2024-01-03T21:45:43.853576+00:00 GitLab Importer Fixing VCID-bnke-ggs1-aaac None 34.0.0rc1