Vulnerabilities and security researches forvcaching vcaching

Aug 24, 2025

CVE, Research URL: CVE-2025-48360
Home page URL: Security reports for Varnish/Nginx Proxy Caching
Application: Varnish/Nginx Proxy Caching
Date: Aug 28, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Razvan Stanga Varnish/Nginx Proxy Caching allows Stored XSS. This issue affects Varnish/Nginx Proxy Caching: from n/a through 1.8.3.
Affected versions: max 1.8.3.
Status: vulnerable

Jan 10, 2026

CVE, Research URL: CVE-2025-62126
Home page URL: Security reports for Varnish/Nginx Proxy Caching
Application: Varnish/Nginx Proxy Caching
Date: Dec 31, 2025
Research Description: Insertion of Sensitive Information Into Sent Data vulnerability in Razvan Stanga Varnish/Nginx Proxy Caching allows Retrieve Embedded Sensitive Data.This issue affects Varnish/Nginx Proxy Caching: from n/a through 1.8.3.
Affected versions: max 1.8.3.
Status: vulnerable