Aigent.ly

Threat Intelligence

Live CVE feed

136 threats tracked across 6 launch stacks — sourced from NVD, GHSA, CISA KEV, and OSV.

Stack exposure — click to filter
Next.js
3crit/37high
Express / Node.js
6crit/15high
FastAPI / Python
2crit/8high
NestJS
0crit/12high
Nuxt
2crit/15high
React SPA
0crit/20high
AllCritical + HighCriticalHighMediumLow
Clear
1threats · All threats
Get guardrails →
HighCVE-2026-21884
2 rules

React Router SSR XSS in ScrollRestoration

A XSS vulnerability exists in in React Router's <ScrollRestoration> API in Framework Mode when using the getKey/storageKey props during Server-Side Rendering which could allow arbitrary JavaScript execution during SSR if untrusted content is used to generate the keys. > [!NOTE] > This does not impact applications if developers have disabled server-side rendering in Framework Mode, or if they are using Declarative Mode (<BrowserRouter>) or Data Mode (createBrowserRouter/<RouterProvider>).

OWASP A03OWASP WEB
Get guardrail →

Showing 11 of 1 threats