Known Vulnerabilities for Vite by Vitejs
Listed below are 3 of the newest known vulnerabilities associated with "Vite" by "Vitejs".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39365 json | Vite is a frontend tooling framework for JavaScript. From 6.0.0 to before 6.4.2, 7.3.2, and 8.0.5, the dev server’s handlin... | Not Provided | 2026-04-07 | 2026-04-07 |
| CVE-2026-39364 json | Vite is a frontend tooling framework for JavaScript. From 7.1.0 to before 7.3.2 and 8.0.5, on the Vite dev server, files that... | Not Provided | 2026-04-07 | 2026-04-07 |
| CVE-2026-39363 json | Vite is a frontend tooling framework for JavaScript. From 6.0.0 to before 6.4.2, 7.3.2, and 8.0.5, if it is possible to conne... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2026-34456 json | Reviactyl is an open-source game server management panel built using Laravel, React, FilamentPHP, Vite, and Go. From version ... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2025-32642 json | Cross-Site Request Forgery (CSRF) vulnerability in appsbd Vite Coupon vite-coupon allows Remote Code Inclusion.This issue aff... | Not Provided | 2025-04-09 | 2026-04-01 |
| CVE-2024-23331 json | 7.5 - HIGH | 2024-01-19 | 2024-01-29 | |
| CVE-2023-34092 json | Vite provides frontend tooling. Prior to versions 2.9.16, 3.2.7, 4.0.5, 4.1.5, 4.2.3, and 4.3.9, Vite Server Options (`server... | 7.5 - HIGH | 2023-06-01 | 2023-06-09 |
| CVE-2022-35204 json | Vitejs Vite before v2.9.13 was discovered to allow attackers to perform a directory traversal via a crafted URL to the victim... | 4.3 - MEDIUM | 2022-08-18 | 2022-08-19 |