Astro's bypass of image proxy domain validation leads to SSRF and potential XSS

Severity:: High

Description

This is a patch bypass of CVE-2025-58179 in commit 9ecf359. The fix blocks http://, https:// and //, but can be bypassed using backslashes (\) - the endpoint still issues a server-side fetch.

Recommendation

Update the astro package to the latest compatible version. Followings are version details:

Affected version(s): >= 5.13.4, < 5.13.10
Patched version(s): 5.13.10

References

GHSA-qcpr-679q-rhm2
CVE-2025-59837
CWE-79
CWE-918
CAPEC-310
OWASP 2021-A10
OWASP 2021-A3
OWASP 2021-A6

Related Issues

Astro Cloudflare adapter has Stored Cross-site Scripting vulnerability in /_image endpoint - CVE-2025-65019
Astro development server error page is vulnerable to reflected Cross-site Scripting - CVE-2025-64745
Astro allows unauthorized third-party images in _image endpoint - CVE-2025-55303
Astros's duplicate trailing slash feature leads to an open redirection security issue - CVE-2025-54793

Tags:: npm; astro

Anything's wrong? Let us know Last updated on October 29, 2025