Vulnerabilities in KindSpells

2 results

CVE-2024-29896HIGHAstro-Shield's Content-Security-Policy header generation in middleware could be compromised by malicious injectionsEPSS 0.6%CVE-2024-30250HIGHIn Astro-Shield, setting a correct `integrity` attribute to injected code allows to bypass the allow-listsEPSS 0.3%