VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-7wau-f9fg-8fdf

Essentials
Severities (17)
References (7)
Severity details (14)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-7wau-f9fg-8fdf
Aliases	CVE-2025-61925 GHSA-5ff5-9fcw-vg88
Summary	Astro is a web framework. Prior to version 5.14.2, Astro reflects the value in `X-Forwarded-Host` in output when using `Astro.url` without any validation. It is common for web servers such as nginx to route requests via the `Host` header, and forward on other request headers. As such as malicious request can be sent with both a `Host` header and an `X-Forwarded-Host` header where the values do not match and the `X-Forwarded-Host` header is malicious. Astro will then return the malicious value. This could result in any usages of the `Astro.url` value in code being manipulated by a request. For example if a user follows guidance and uses `Astro.url` for a canonical link the canonical link can be manipulated to another site. It is theoretically possible that the value could also be used as a login/registration or other form URL as well, resulting in potential redirecting of login credentials to a malicious party. As this is a per-request attack vector the surface area would only be to the malicious user until one considers that having a caching proxy is a common setup, in which case any page which is cached could persist the malicious value for subsequent users. Many other frameworks have an allowlist of domains to validate against, or do not have a case where the headers are reflected to avoid such issues. This could affect anyone using Astro in an on-demand/dynamic rendering mode behind a caching proxy. Version 5.14.2 contains a fix for the issue.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (4)

CWE-470	Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
CWE-20	Improper Input Validation
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
epss	0.00057	https://api.first.org/data/v1/epss?cve=CVE-2025-61925
epss	0.00057	https://api.first.org/data/v1/epss?cve=CVE-2025-61925
epss	0.00057	https://api.first.org/data/v1/epss?cve=CVE-2025-61925
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-5ff5-9fcw-vg88
cvssv3.1	6.5	https://github.com/Chisnet/minimal_dynamic_astro_server
generic_textual	MODERATE	https://github.com/Chisnet/minimal_dynamic_astro_server
ssvc	Track	https://github.com/Chisnet/minimal_dynamic_astro_server
cvssv3.1	6.5	https://github.com/withastro/astro
generic_textual	MODERATE	https://github.com/withastro/astro
cvssv3.1	6.5	https://github.com/withastro/astro/commit/6ee63bfac4856f21b4d4633021b3d2ee059e553f
generic_textual	MODERATE	https://github.com/withastro/astro/commit/6ee63bfac4856f21b4d4633021b3d2ee059e553f
cvssv3.1	6.5	https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88
cvssv3.1_qr	MODERATE	https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88
generic_textual	MODERATE	https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88
ssvc	Track	https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88
cvssv3.1	6.5	https://nvd.nist.gov/vuln/detail/CVE-2025-61925
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2025-61925

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2025-61925
		https://github.com/withastro/astro
		https://github.com/withastro/astro/commit/6ee63bfac4856f21b4d4633021b3d2ee059e553f
CVE-2025-61925		https://nvd.nist.gov/vuln/detail/CVE-2025-61925
GHSA-5ff5-9fcw-vg88		https://github.com/advisories/GHSA-5ff5-9fcw-vg88
GHSA-5ff5-9fcw-vg88		https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88
minimal_dynamic_astro_server		https://github.com/Chisnet/minimal_dynamic_astro_server

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Found at https://github.com/Chisnet/minimal_dynamic_astro_server

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-10T20:00:44Z/ Found at https://github.com/Chisnet/minimal_dynamic_astro_server

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Found at https://github.com/withastro/astro

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Found at https://github.com/withastro/astro/commit/6ee63bfac4856f21b4d4633021b3d2ee059e553f

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Found at https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-10-10T20:00:44Z/ Found at https://github.com/withastro/astro/security/advisories/GHSA-5ff5-9fcw-vg88

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Found at https://nvd.nist.gov/vuln/detail/CVE-2025-61925

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Exploit Prediction Scoring System (EPSS)

Percentile	0.18249
EPSS Score	0.00057
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T17:18:57.219958+00:00	Vulnrichment	Import	https://github.com/cisagov/vulnrichment/blob/develop/2025/61xxx/CVE-2025-61925.json	38.6.0