FLAT-MA8XX (CVE-2026-42211)
Insecure deserialization In react-router
8.4
High
Ecosystem: Npm
Package: react-router
FLAT-6Q1ZE (CVE-2026-40181)
Uncontrolled external site redirect In react-router
6.6
Medium
Ecosystem: Npm
Package: react-router
FLAT-H5U84 (CVE-2026-33245)
Reflected cross-site scripting (XSS) In react-router
5.9
Medium
Ecosystem: Npm
Package: react-router
FLAT-AMIS8 (CVE-2026-33244)
Server side cross-site scripting In react-router
1.1
Low
Ecosystem: Npm
Package: react-router
FLAT-JVTO4 (MAL-2026-3465)
Use of software with malware In @tanstack/react-router
5.2
Medium
Ecosystem: Npm
Package: @tanstack/react-router
FLAT-LNO1H (MAL-2026-3467)
Use of software with malware In @tanstack/react-router-ssr-query
5.2
Medium
Ecosystem: Npm
Package: @tanstack/react-router-ssr-query
FLAT-W48SM (MAL-2026-3466)
Use of software with malware In @tanstack/react-router-devtools
5.2
Medium
Ecosystem: Npm
Package: @tanstack/react-router-devtools
FLAT-VTIEN (MAL-2026-2978)
Use of software with malware In @oec-settlement/react-router
5.2
Medium
Ecosystem: Npm
Package: @oec-settlement/react-router
FLAT-AZYFF (MAL-2026-1838)
Use of software with malware In react-router-on-navigation
5.2
Medium
Ecosystem: Npm
Package: react-router-on-navigation
FLAT-WAXUM (CVE-2026-21884)
Reflected cross-site scripting (XSS) In react-router
6.5
Medium
Ecosystem: Npm
Package: react-router
FLAT-7EQGD (CVE-2025-59057)
Reflected cross-site scripting (XSS) In react-router
4.2
Medium
Ecosystem: Npm
Package: react-router
FLAT-QEBRV (MAL-2025-192977)
Use of software with malware In shopify-app-react-router
5.2
Medium
Ecosystem: Npm
Package: shopify-app-react-router
FLAT-X9GJE (MAL-2025-191137)
Use of software with malware In okta-react-router-6
5.2
Medium
Ecosystem: Npm
Package: okta-react-router-6
FLAT-2L0GE (MAL-2025-190605)
Use of software with malware In airbnb-react-router-legacy-v3
5.2
Medium
Ecosystem: Npm
Package: airbnb-react-router-legacy-v3
FLAT-UVVJN (MAL-2025-190604)
Use of software with malware In airbnb-react-router-legacy
5.2
Medium
Ecosystem: Npm
Package: airbnb-react-router-legacy
FLAT-05OFY (MAL-2025-49236)
Use of software with malware In react-router-kitt
5.2
Medium
Ecosystem: Npm
Package: react-router-kitt
FLAT-B9HAG (MAL-2025-49091)
Use of software with malware In react-router-dom.js
5.2
Medium
Ecosystem: Npm
Package: react-router-dom.js
FLAT-YXSJN (MAL-2025-45768)
Use of software with malware In react-router-beta
5.2
Medium
Ecosystem: Npm
Package: react-router-beta
FLAT-H0WRW (MAL-2025-45769)
Use of software with malware In react-router-dom-beta
5.2
Medium
Ecosystem: Npm
Package: react-router-dom-beta
FLAT-4NGZU (MAL-2025-45770)
Use of software with malware In react-router-dom-stable
5.2
Medium
Ecosystem: Npm
Package: react-router-dom-stable
FLAT-LGDIQ (MAL-2025-42065)
Use of software with malware In react-router-html
5.2
Medium
Ecosystem: Npm
Package: react-router-html
FLAT-UWSHX (MAL-2025-31853)
Use of software with malware In react-router-dom-5
5.2
Medium
Ecosystem: Npm
Package: react-router-dom-5
FLAT-QAMRL (MAL-2025-31854)
Use of software with malware In react-router2
5.2
Medium
Ecosystem: Npm
Package: react-router2
FLAT-AXJAK (MAL-2025-19005)
Use of software with malware In dvrt-flux-react-router
5.2
Medium
Ecosystem: Npm
Package: dvrt-flux-react-router
FLAT-GGE2V (CVE-2025-55008)
Sensitive information sent insecurely In @workos-inc/authkit-react-router
5.0
Medium
Ecosystem: Npm
Package: @workos-inc/authkit-react-router
FLAT-UH1Q4 (CVE-2025-53548)
Insufficient data authenticity validation In @clerk/react-router
6.6
Medium
Ecosystem: Npm
Package: @clerk/react-router
FLAT-O4SYZ (MAL-2025-5723)
Use of software with malware In react-router-scroll-navar
5.2
Medium
Ecosystem: Npm
Package: react-router-scroll-navar
FLAT-ZH9C8 (MAL-2025-5667)
Use of software with malware In appf-react-router-dom
5.2
Medium
Ecosystem: Npm
Package: appf-react-router-dom
FLAT-O1RZO (MAL-2025-5681)
Use of software with malware In cra-react-router
5.2
Medium
Ecosystem: Npm
Package: cra-react-router
FLAT-E47BK (CVE-2025-43865)
Insufficient data authenticity validation In react-router
6.7
Medium
Ecosystem: Npm
Package: react-router
FLAT-VC7N8 (CVE-2025-43864)
Insecure deserialization In react-router
6.6
Medium
Ecosystem: Npm
Package: react-router
FLAT-BDLVP (CVE-2025-31137)
HTTP request smuggling In @react-router/express
6.6
Medium
Ecosystem: Npm
Package: @react-router/express
FLAT-WREOY (MAL-2024-9004)
Use of software with malware In meraki-react-router
5.2
Medium
Ecosystem: Npm
Package: meraki-react-router
FLAT-JFGJQ (MAL-2024-2938)
Use of software with malware In react-router-dom-v7
5.2
Medium
Ecosystem: Npm
Package: react-router-dom-v7
FLAT-SFFP5 (MAL-2024-2937)
Use of software with malware In react-router-dom-v6
5.2
Medium
Ecosystem: Npm
Package: react-router-dom-v6
FLAT-T87VS (MAL-2023-8204)
Use of software with malware In @zettle-bo/react-router-dom
5.2
Medium
Ecosystem: Npm
Package: @zettle-bo/react-router-dom
FLAT-HHZJA (MAL-2023-733)
Use of software with malware In react-router-packages
5.2
Medium
Ecosystem: Npm
Package: react-router-packages