1. CVE-2025-24010: Vite Development Servers Vulnerable to Cross-Origin Request Interception
A critical vulnerability in Vite, the widely-used frontend build tool, has been identified and patched. The security flaw, tracked as CVE-2025-24010 and catalogued as GHSA-vg6x-rcgg-rjx6, allowed malicious websites to send arbitrary requests to Vite development servers and read the responses. This vulnerability represe...