Package impact
npm / vitest
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-47429 | unknown | — | — | 6h ago | When Vitest UI server is listening, arbitrary file can be read and executed | |||
| CVE-2025-24964 | unknown | — | — | 1y ago | Vitest allows Remote Code Execution when accessing a malicious website while Vitest API server is listening |