Vite server.fs.deny Bypass via Invalid Request-Target (CVE-2025-32395)
Security AdvisoryCVE-2025-32395MediumVite
Affected:
- Vite >=6.2.0 <=6.2.5
- Vite >=6.1.0 <=6.1.4
- Vite >=6.0.0 <=6.0.14
- Vite >=5.0.0 <=5.4.17
- Vite <=4.5.12
Fixed in:
- Vite >=6.2.6
- Vite >=6.1.5 <6.2.0
- Vite >=6.0.15 <6.1.0
- Vite >=5.4.18 <6.0.0
- Vite >=4.5.13 <5.0.0
Referenced CVEs: CVE-2025-32395
文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive
This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.