All 3 CVE vulnerabilities found in sentry-javascript, with AI-generated Chinese analysis, references, and POCs.
Vendor: getsentry
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-65944 | Sentry-Javascript deals with leaked sensitive headers when `sendDefaultPii` is set to `true` CWE-201 | 9.9AI | CriticalAI | 2025-11-25 |
| CVE-2023-50249 | Sentry's Astro SDK vulnerable to ReDoS CWE-400 | 7.5 | High | 2023-12-20 |
| CVE-2023-46729 | Sentry Next.js vulnerable to SSRF via Next.js SDK tunnel endpoint CWE-918 | 9.3 | Critical | 2023-11-10 |
All 3 known CVE vulnerabilities affecting sentry-javascript with full Chinese analysis, references, and POCs where available.