This page collects WhisperX intelligence signals tagged #CVE-2026-33768. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical security flaw in the `@astrojs/vercel` integration allows unauthenticated attackers to rewrite internal server request paths, potentially leading to path traversal attacks. The vulnerability, tracked as CVE-2026-33768, stems from the serverless entrypoint reading the `x-astro-path` header and `x_astro_path` ...
A critical security flaw in the `@astrojs/vercel` integration allows unauthenticated attackers to manipulate server-side request paths, potentially leading to unauthorized access or data exposure. The vulnerability, tracked as CVE-2026-33768, stems from the serverless entrypoint's handling of the `x-astro-path` header ...