@remix-run/react

This hub aggregates every CVE we track for @remix-run/react, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

OSS Libraries

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

HIGH3MEDIUM1

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 4 most recently published vulnerabilities affecting @remix-run/react.

CVE-2026-22030React Router has CSRF issue in Action/Server Action Request Processing6.5Jan 10, 2026
CVE-2026-22029React Router vulnerable to XSS via Open Redirects8.0Jan 10, 2026
CVE-2026-21884React Router SSR XSS in ScrollRestoration8.2Jan 10, 2026
CVE-2025-59057React Router has XSS Vulnerability7.6Jan 10, 2026

Product normalization is registry-driven with AI assist and human review. How it works