Title:Vite 访问控制错误漏洞 (CVE-2026-39363) Description:Vite是Vite开源的一种新型的前端构建工具。 Vite 6.0.0至6.4.2之前版本、7.3.2之前版本和8.0.5之前版本存在访问控制错误漏洞,该漏洞源于WebSocket路径缺少访问控制,可能导致攻击者检索服务器上的任意文件。
File Snapshot
# Vite Development Server WebSocket Arbitrary File Read (CVE-2026-39363)
[中文版本(Chinese version)](RE
...
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.