VYPR

npm package

@react-router/express

pkg:npm/%40react-router/express

Vulnerabilities (1)

  • CVE-2025-31137HigApr 1, 2025
    affected >= 7.0.0, < 7.4.1fixed 7.4.1

    React Router is a multi-strategy router for React bridging the gap from React 18 to React 19. There is a vulnerability in Remix/React Router that affects all Remix 2 and React Router 7 consumers using the Express adapter. Basically, this vulnerability allows anyone to spoof the U