V
Vexday
by TrueHacking
›
PT
ES
EN
Overview
CVEs
Technologies
Vendors
Weakness types
Briefing
Live
Home
/
Technologies
/
KindSpells
Vulnerabilities in
KindSpells
2 results
CVE-2024-29896
HIGH
Astro-Shield's Content-Security-Policy header generation in middleware could be compromised by malicious injections
EPSS
0.6%
CVE-2024-30250
HIGH
In Astro-Shield, setting a correct `integrity` attribute to injected code allows to bypass the allow-lists
EPSS
0.3%