Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

JavaScript Library

axios

Promise based HTTP client for the browser and node.js

Official Site:

https://github.com/axios/axios

Severity Summary:

Critical: 2 High: 6 Medium: 2
Reference
Title
Severity
CVE-2024-57965
axios Origin Validation Error Vulnerability
Critical
CVE-2025-62718
axios Unintended Proxy or Intermediary (Confused Deputy) Vulnerability
Critical
CVE-2019-10742
axios Improper Input Validation Vulnerability
High
CVE-2021-3749
axios Uncontrolled Resource Consumption Vulnerability
High
CVE-2024-39338
axios Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2025-58754
axios Allocation of Resources Without Limits or Throttling Vulnerability
High
CVE-2025-27152
axios Server-Side Request Forgery (SSRF) Vulnerability
High
CVE-2026-25639
axios Improper Check for Unusual or Exceptional Conditions Vulnerability
High
CVE-2020-28168
axios Server-Side Request Forgery (SSRF) Vulnerability
Medium
CVE-2023-45857
axios Cross-Site Request Forgery (CSRF) Vulnerability
Medium