astro
js · astroCritical
Astro XSS via unescaped attribute keys in spreadAttributes
The `spreadAttributes` function in Astro's SSR pipeline fails to escape object keys when interpolating them into HTML attribute na
17 Jun 2026 · act now
js · astroCritical
Astro SSR: Host header injection in prerendered error page fetch
Astro SSR apps with prerendered error pages fetch those pages over HTTP at runtime using a URL derived from the incoming Host head
17 Jun 2026 · act now