SSRF in Esm-dev Esm.sh
CVE-2025-50180
esm.sh is a no-build content delivery network (CDN) for web development. In version 136, esm.sh is vulnerable to a full-response SSRF, allowing an attacker to retrieve information from internal websites through the vulnerability. Version 1…
Vulnerability class: SSRF (Server-Side Request Forgery)
EPSS: 0.001 (20.3th percentile) — read the EPSS interpretation.
Affected products
- Esm-dev Esm.sh — versions = 136
Weakness classification (CWE)
References
- https://github.com/esm-dev/esm.sh/security/advisories/GHSA-3c9r-837r-qqm4 (x_refsource_CONFIRM)
- https://github.com/esm-dev/esm.sh/pull/1149 (x_refsource_MISC)
- https://github.com/esm-dev/esm.sh/commit/0593516c4cfab49ad3b4900416a8432ff2e23eb0 (x_refsource_MISC)
- https://github.com/esm-dev/esm.sh/blob/f80ff8c8d58749e77fa964abde468fc61f8bd89e/internal/fetch/fetch.go#L13 (x_refsource_MISC)
- https://github.com/esm-dev/esm.sh/blob/f80ff8c8d58749e77fa964abde468fc61f8bd89e/server/router.go#L511 (x_refsource_MISC)
- https://github.com/esm-dev/esm.sh/releases/tag/v137 (x_refsource_MISC)