OsVault/npm/@opennextjs/cloudflare
npm

@opennextjs/cloudflare

2 known vulnerabilities · 0 critical · 0 high

CVE-2025-6087

opennextjs-cloudflare has SSRF vulnerability via /cdn-cgi/ path normalization bypass

Published Mar 5, 2026
GHSA-rvpw-p7vw-wj3m

OpenNext for Cloudflare (opennextjs-cloudflare) has a SSRF vulnerability via /_next/image endpoint

Published Jun 16, 2025
Check your entire dependency tree at onceRun dependency scan →