@sveltejs/adapter-node

npm2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting @sveltejs/adapter-nodepage 1 of 1

CVE-2024-23641HIGHCVSS 7.5EG 7.5✓ Fixed in 4.0.1
2024-01-24
vulnerable: 4.0.0
SvelteKit is a web development kit. In SvelteKit 2, sending a GET request with a body eg `{}` to a built and previewed/hosted sveltekit app throws `Request with GET/HEAD method cannot have body.` and crashes the preview/hosting. After this…
CVE-2025-67647CRITICALCVSS 9.1EG 9.1✓ Fixed in 5.5.1
2026-01-15
SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. Prior to 2.49.5, SvelteKit is vulnerable to a server side request forgery (SSRF) and denial of service (DoS) under certain conditions. From 2…

Check whether @sveltejs/adapter-node is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for @sveltejs/adapter-node CVEs against the assets you own.

Start Free Scan →