7.2

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-58179

GHSA ID

GHSA-qpr4-c339-7vq8

EPSS Score

CWE

CWE-918

Published

9/4/2025

Updated

9/4/2025

KEV Status

Technology

JavaScript

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-58179

CVE-2025-58179: Server-Side Request Forgery via /_image endpoint in Astro Cloudflare adapter

Summary

When using Astro's Cloudflare adapter (@astrojs/cloudflare) configured with output: 'server' while using the default imageService: 'compile', the generated image optimization endpoint doesn't check the URLs it receives, allowing content from unauthorized third-party domains to be served.

Details

On-demand rendered sites built with Astro include an /_image endpoint, which returns optimized versions of images.

The /_image endpoint is restricted to processing local images bundled with the site and also supports remote images from domains the site developer has manually authorized (using the image.domains or image.remotePatterns options).

However, a bug in impacted versions of the @astrojs/cloudflare adapter for deployment on Cloudflare’s infrastructure, allows an attacker to bypass the third-party domain restrictions and serve any content from the vulnerable origin.

PoC

Create a new minimal Astro project (astro@5.13.3)

Configure it to use the Cloudflare adapter (@astrojs/cloudflare@12.6.5) and server output:

// astro.config.mjs
import { defineConfig } from 'astro/config';
import cloudflare from '@astrojs/cloudflare';

export default defineConfig({
  output: 'server',
  adapter: cloudflare(),
});

Deploy to Cloudflare Pages or Workers
Append /_image?href=https://placehold.co/600x400 to the deployment URL.
This will serve the placeholder image from the unauthorised placehold.co domain.

Impact

Allows a non-authorized third-party to create URLs on an impacted site’s origin that serve unauthorized content. This includes the risk of server-side request forgery (SSRF) and by extension cross-site scripting (XSS) if a user follows a link to a maliciously crafted URL.

(GitHub Advisory)

7.2

CVSS Score

3.1

Basic Information

CVE ID

CVE-2025-58179

GHSA ID

GHSA-qpr4-c339-7vq8

EPSS Score

CWE

CWE-918

Published

9/4/2025

Updated

9/4/2025

KEV Status

Technology

JavaScript

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
@astrojs/cloudflare	npm	>= 11.0.3, < 12.6.6	12.6.6

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The security advisory points to a Server-Side Request Forgery (SSRF) vulnerability in the @astrojs/cloudflare adapter's /_image endpoint. The provided commit 9ecf3598e2b29dd74614328fde3047ea90e67252 contains the fix for this vulnerability. Analysis of the commit shows modifications to packages/integrations/cloudflare/src/entrypoints/image-endpoint.ts. Specifically, the GET function, which handles the endpoint's logic, was changed. Before the patch, the function would fetch any URL passed in the href query parameter. The patch introduces checks using isRemotePath and isRemoteAllowed to validate the URL against the user's image domain configuration (image.domains or image.remotePatterns). If the URL points to a non-whitelisted remote domain, the request is rejected. This confirms that the GET function was the source of the vulnerability, as it processed potentially malicious input without proper validation.

Vulnerable functions

GET

packages/integrations/cloudflare/src/entrypoints/image-endpoint.ts

The `GET` function in `packages/integrations/cloudflare/src/entrypoints/image-endpoint.ts` is an API route handler for the `/_image` endpoint. In the vulnerable versions, this function retrieves the `href` parameter from the URL and uses it directly in a `fetch` call. There was no validation to check if the URL provided in `href` belongs to a domain authorized by the application's configuration. This allows an attacker to craft a URL that causes the server to make a request to any arbitrary domain, leading to a Server-Side Request Forgery (SSRF) vulnerability.

WAF Protection Rules

WAF Rule

### Summ*ry W**n usin* *stro's *lou**l*r* ***pt*r (`@*strojs/*lou**l*r*`) *on*i*ur** wit* `output: 's*rv*r'` w*il* usin* t** ****ult `im***S*rvi**: '*ompil*'`, t** **n*r*t** im*** optimiz*tion *n*point *o*sn't ****k t** URLs it r***iv*s, *llowin* *o

Reasoning

T** s**urity **visory points to * S*rv*r-Si** R*qu*st *or**ry (SSR*) vuln*r**ility in t** `@*strojs/*lou**l*r*` ***pt*r's `/_im***` *n*point. T** provi*** *ommit `****************************************` *ont*ins t** *ix *or t*is vuln*r**ility. *n*l

7.2

Basic Information

Concerned about an active attack path?

CVE-2025-58179: Server-Side Request Forgery via /_image endpoint in Astro Cloudflare adapter

Summary

Details

PoC

Impact

7.2

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI