Astro is vulnerable to SSRF due to missing allowlist enforcement in remote image inferSize

Severity:: Medium

Description

A bug in Astro’s image pipeline allows bypassing image.domains / image.remotePatterns restrictions, enabling the server to fetch content from unauthorized remote hosts.

Recommendation

Update the @astrojs/node package to the latest compatible version. Followings are version details:

Affected version(s): >= 9.0.0, < 9.5.4
Patched version(s): 9.5.4

References

GHSA-cj9f-h6r6-4cx2
CVE-2026-27829
CWE-918
CAPEC-310
OWASP 2021-A10
OWASP 2021-A6

Related Issues

Astro: Memory exhaustion DoS due to missing request body size limit in Server Islands - CVE-2026-29772
Astro has memory exhaustion DoS due to missing request body size limit in Server Actions - CVE-2026-27729
Astro has Full-Read SSRF in error rendering via Host: header injection - CVE-2026-25545
Astro: Remote allowlist bypass via unanchored matchPathname wildcard - CVE-2026-33769

Tags:: npm; @astrojs/node

Anything's wrong? Let us know Last updated on February 27, 2026