CVE-2025-64745 | withastro up to 5.15.5 URL cross site scripting (GHSA-w2vj-39qv-7vh7)

A vulnerability was found in withastro astro up to 5.15.5 and classified as problematic. The affected element is an unknown function of the component URL Handler. The manipulation results in cross site scripting.

This vulnerability was named CVE-2025-64745. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More