VYPR

Sentry Javascript

by Getsentry

Source repositories

CVEs (3)

  • CVE-2025-65944MedNov 25, 2025
    risk 0.26cvss epss 0.00

    Sentry-Javascript is an official Sentry SDKs for JavaScript. From version 10.11.0 to before 10.27.0, when a Node.js application using the Sentry SDK has sendDefaultPii: true it is possible to inadvertently send certain sensitive HTTP headers, including the Cookie header, to…

  • CVE-2023-50249Dec 20, 2023
    risk 0.00cvss epss 0.01

    Sentry-Javascript is official Sentry SDKs for JavaScript. A ReDoS (Regular expression Denial of Service) vulnerability has been identified in Sentry's Astro SDK 7.78.0-7.86.0. Under certain conditions, this vulnerability allows an attacker to cause excessive computation times on…

  • CVE-2023-46729Nov 10, 2023
    risk 0.00cvss epss 0.01

    sentry-javascript provides Sentry SDKs for JavaScript. An unsanitized input of Next.js SDK tunnel endpoint allows sending HTTP requests to arbitrary URLs and reflecting the response back to the user. This issue only affects users who have Next.js SDK tunneling feature enabled.…