kubeflow-katib

Direct Vulnerabilities

Known vulnerabilities in the kubeflow-katib package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
GHSA-mh68-qf2j-8c5g

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
GHSA-pf86-5x62-jrwf

<0.19.0-r31
  • L
GHSA-7qhm-5mxq-x7vp

<0.19.0-r31
  • L
GHSA-43fc-jf86-j433

<0.19.0-r31
  • L
GHSA-v2v4-37r5-5v8g

<0.19.0-r31
  • H
Uncontrolled Recursion

<0.19.0-r31
  • L
Resource Exhaustion

<0.19.0-r31
  • L
GHSA-wf6x-7x77-mvgw

<0.19.0-r31
  • L
Server-Side Request Forgery (SSRF)

<0.19.0-r31
  • H
Uncontrolled Recursion

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
CVE-2026-12143

<0.19.0-r31
  • L
GHSA-898c-q2cr-xwhg

<0.19.0-r31
  • M
CVE-2023-39326

<0.19.0-r31
  • L
Cross-site Scripting (XSS)

<0.19.0-r31
  • H
Use of Uninitialized Resource

<0.19.0-r31
  • L
Reversible One-Way Hash

<0.19.0-r31
  • L
GHSA-m3hq-grv6-h853

<0.19.0-r31
  • L
GHSA-67mh-4wv8-2f99

<0.19.0-r31
  • H
CVE-2022-41723

<0.19.0-r31
  • L
CVE-2025-22873

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
GHSA-9f7g-gqwh-jpf5

<0.19.0-r31
  • L
GHSA-q7cg-457f-vx79

<0.19.0-r31
  • L
GHSA-37ch-88jc-xwx2

<0.19.0-r31
  • L
GHSA-c9hr-fvm9-7c49

<0.19.0-r31
  • M
Resource Exhaustion

<0.19.0-r31
  • L
GHSA-m7pr-hjqh-92cm

<0.19.0-r31
  • L
Direct Request ('Forced Browsing')

<0.19.0-r31
  • L
GHSA-p3p7-9h4w-jqw2

<0.19.0-r31
  • L
GHSA-j5f8-grm9-p9fc

<0.19.0-r31
  • L
GHSA-8jvr-vh7g-f8gx

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
CVE-2026-42505

<0.19.0-r31
  • L
GHSA-r5fr-rjxr-66jc

<0.19.0-r31
  • L
GHSA-888h-rm2r-vrc7

<0.19.0-r31
  • C
Arbitrary Code Injection

<0.19.0-r31
  • L
Improper Input Validation

<0.19.0-r31
  • H
Directory Traversal

<0.19.0-r31
  • L
GHSA-qpx9-hpmf-5gmw

<0.19.0-r31
  • L
Uncaught Exception

<0.19.0-r31
  • L
GHSA-83g3-92jg-28cx

<0.19.0-r31
  • L
GHSA-4x5r-pxfx-6jf8

<0.19.0-r31
  • L
GHSA-fp86-2355-v99r

<0.19.0-r31
  • L
CVE-2026-45249

<0.19.0-r31
  • L
GHSA-ff52-ph69-cf7x

<0.19.0-r31
  • L
GHSA-wprm-fgrx-xj42

<0.19.0-r31
  • H
Improper Input Validation

<0.19.0-r31
  • L
GHSA-8v5j-pwr7-w5f8

<0.19.0-r31
  • H
CVE-2022-41716

<0.19.0-r31
  • M
CVE-2026-2950

<0.19.0-r31
  • L
GHSA-hw49-2p59-3mhj

<0.19.0-r31
  • L
GHSA-445q-vr5w-6q77

<0.19.0-r31
  • L
GHSA-6chq-wfr3-2hj9

<0.19.0-r31
  • C
CVE-2026-27143

<0.19.0-r31
  • C
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r31
  • L
GHSA-w9j2-pvgh-6h63

<0.19.0-r31
  • L
GHSA-mh29-5h37-fv8m

<0.19.0-r31
  • L
Improper Encoding or Escaping of Output

<0.19.0-r31
  • H
Directory Traversal

<0.19.0-r31
  • L
Uncontrolled Recursion

<0.19.0-r31
  • L
Information Exposure

<0.19.0-r31
  • L
GHSA-79cf-xcqc-c78w

<0.19.0-r31
  • L
GHSA-96hv-2xvq-fx4p

<0.19.0-r31
  • L
CVE-2026-39822

<0.19.0-r31
  • L
GHSA-q8mj-m7cp-5q26

<0.19.0-r31
  • M
CVE-2025-32997

<0.19.0-r31
  • L
GHSA-5c6j-r48x-rmvq

<0.19.0-r31
  • M
Directory Traversal

<0.19.0-r31
  • L
GHSA-p92q-9vqr-4j8v

<0.19.0-r31
  • M
Server-Side Request Forgery (SSRF)

<0.19.0-r31
  • L
GHSA-gwrf-jf3h-w649

<0.19.0-r31
  • L
GHSA-pmwg-cvhr-8vh7

<0.19.0-r31
  • L
GHSA-fv7c-fp4j-7gwp

<0.19.0-r31
  • L
CVE-2024-47764

<0.19.0-r31
  • L
GHSA-25h7-pfq9-p65f

<0.19.0-r31
  • L
GHSA-r4q5-vmmm-2653

<0.19.0-r31
  • L
GHSA-ph9p-34f9-6g65

<0.19.0-r31
  • L
Loop with Unreachable Exit Condition ('Infinite Loop')

<0.19.0-r31
  • L
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
CVE-2025-12816

<0.19.0-r31
  • L
GHSA-v4hv-rgfq-gp49

<0.19.0-r31
  • H
Arbitrary Code Injection

<0.19.0-r31
  • L
GHSA-554w-wpv2-vw27

<0.19.0-r31
  • L
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
GHSA-rv83-g57w-fr8j

<0.19.0-r31
  • L
GHSA-677m-j7p3-52f9

<0.19.0-r31
  • L
GHSA-xc82-5m89-g4jv

<0.19.0-r31
  • C
CVE-2023-24540

<0.19.0-r31
  • L
GHSA-jwmf-chvc-rf92

<0.19.0-r31
  • L
GHSA-62jj-gr2r-5c34

<0.19.0-r31
  • H
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • H
HTTP Request Smuggling

<0.19.0-r31
  • L
CVE-2025-61730

<0.19.0-r31
  • L
GHSA-c7qv-q95q-8v27

<0.19.0-r31
  • L
GHSA-f2cj-5636-4j38

<0.19.0-r31
  • L
GHSA-f23m-r3pf-42rh

<0.19.0-r31
  • C
Improperly Controlled Modification of Dynamically-Determined Object Attributes

<0.19.0-r31
  • L
GHSA-mwcw-c2x4-8c55

<0.19.0-r31
  • L
GHSA-vq7j-gx56-rxjh

<0.19.0-r31
  • L
GHSA-fvcv-3m26-pcqx

<0.19.0-r31
  • M
CVE-2025-13465

<0.19.0-r31
  • L
GHSA-3w6x-2g7m-8v23

<0.19.0-r31
  • L
GHSA-72xf-g2v4-qvf3

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • M
HTTP Response Splitting

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
CRLF Injection

<0.19.0-r31
  • L
GHSA-hw8r-x6gr-5gjp

<0.19.0-r31
  • L
Information Exposure Through Log Files

<0.19.0-r31
  • L
GHSA-mx8g-39q3-5c79

<0.19.0-r31
  • L
Inefficient Regular Expression Complexity

<0.19.0-r31
  • L
GHSA-j4j7-vw47-rhfq

<0.19.0-r31
  • L
CVE-2025-61732

<0.19.0-r31
  • L
GHSA-9gcr-gp5f-jw27

<0.19.0-r31
  • L
CVE-2025-58183

<0.19.0-r31
  • L
CVE-2024-24791

<0.19.0-r31
  • L
Cross-site Scripting (XSS)

<0.19.0-r31
  • H
Directory Traversal

<0.19.0-r31
  • L
GHSA-w7fw-mjwx-w883

<0.19.0-r31
  • L
GHSA-xcgv-8mv7-v8c7

<0.19.0-r31
  • L
GHSA-52f5-9888-hmc6

<0.19.0-r31
  • L
CVE-2025-4673

<0.19.0-r31
  • H
CVE-2022-27664

<0.19.0-r31
  • L
GHSA-gr56-3gp6-6gmj

<0.19.0-r31
  • L
GHSA-h67p-54hq-rp68

<0.19.0-r31
  • M
Interpretation Conflict

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
GHSA-pppg-cpfq-h7wr

<0.19.0-r31
  • C
Improper Certificate Validation

<0.19.0-r31
  • L
GHSA-q6f4-qqrg-jv6x

<0.19.0-r31
  • L
GHSA-2jcg-qqmg-46q6

<0.19.0-r31
  • L
GHSA-4v9v-hfq4-rm2v

<0.19.0-r31
  • L
GHSA-39pv-4j6c-2g6v

<0.19.0-r31
  • L
CVE-2025-61731

<0.19.0-r31
  • L
GHSA-3xgq-45jj-v275

<0.19.0-r31
  • L
Resource Exhaustion

<0.19.0-r31
  • H
Resource Exhaustion

<0.19.0-r31
  • L
CVE-2025-1302

<0.19.0-r31
  • L
Resource Exhaustion

<0.19.0-r31
  • L
GHSA-f886-m6hf-6m8v

<0.19.0-r31
  • H
Directory Traversal

<0.19.0-r31
  • L
GHSA-fqpx-62jv-7r6r

<0.19.0-r31
  • L
GHSA-5wvm-rxcf-6cg8

<0.19.0-r31
  • L
CVE-2024-21538

<0.19.0-r31
  • L
GHSA-fp44-cj2j-3jhx

<0.19.0-r31
  • L
GHSA-69cg-p879-7622

<0.19.0-r31
  • H
CVE-2023-39323

<0.19.0-r31
  • L
GHSA-j3gx-2473-5fp8

<0.19.0-r31
  • L
GHSA-cxq7-xw9v-rcv3

<0.19.0-r31
  • L
Resource Exhaustion

<0.19.0-r31
  • H
Information Exposure

<0.19.0-r31
  • M
Link Following

<0.19.0-r31
  • L
GHSA-38r7-794h-5758

<0.19.0-r31
  • L
GHSA-p8p7-x288-28g6

<0.19.0-r31
  • L
GHSA-4www-5p9h-95mh

<0.19.0-r31
  • L
CVE-2023-24531

<0.19.0-r31
  • L
GHSA-f3m7-gqxr-g87x

<0.19.0-r31
  • L
GHSA-g9pc-8g42-g6vq

<0.19.0-r31
  • L
CVE-2025-58186

<0.19.0-r31
  • L
GHSA-4vpj-hr3r-4gpg

<0.19.0-r31
  • M
CVE-2026-6402

<0.19.0-r31
  • L
GHSA-jw54-c8rr-pjpq

<0.19.0-r31
  • H
Information Exposure

<0.19.0-r31
  • L
GHSA-xhjh-pmcv-23jw

<0.19.0-r31
  • L
GHSA-5f94-vhjq-rpg8

<0.19.0-r31
  • M
CVE-2024-4067

<0.19.0-r31
  • L
GHSA-34x7-hfp2-rc4v

<0.19.0-r31
  • L
GHSA-3q6h-q44p-xw88

<0.19.0-r31
  • L
GHSA-x2w5-7wp4-5qff

<0.19.0-r31
  • M
Improper Authentication

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
GHSA-p3vc-36g9-x9gr

<0.19.0-r31
  • L
CVE-2026-4867

<0.19.0-r31
  • H
Access of Resource Using Incompatible Type ('Type Confusion')

<0.19.0-r31
  • L
GHSA-5v64-wcgg-87wf

<0.19.0-r31
  • L
CVE-2026-8723

<0.19.0-r31
  • L
GHSA-qx2v-qp2m-jg93

<0.19.0-r31
  • L
GHSA-58w9-8g37-x9v5

<0.19.0-r31
  • L
Uncontrolled Recursion

<0.19.0-r31
  • L
GHSA-5gfm-wpxj-wjgq

<0.19.0-r31
  • L
GHSA-rf6f-7fwh-wjgh

<0.19.0-r31
  • H
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • M
Incorrect Calculation

<0.19.0-r31
  • L
GHSA-65ch-62r8-g69g

<0.19.0-r31
  • L
GHSA-cwpg-qgc6-jxvq

<0.19.0-r31
  • L
Permissive Whitelist

<0.19.0-r31
  • L
GHSA-frhw-mqj2-wxw2

<0.19.0-r31
  • L
CVE-2025-7339

<0.19.0-r31
  • L
CVE-2026-39824

<0.19.0-r31
  • C
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r31
  • L
CVE-2025-47906

<0.19.0-r31
  • L
CVE-2024-55565

<0.19.0-r31
  • L
Algorithmic Complexity

<0.19.0-r31
  • H
Arbitrary Code Injection

<0.19.0-r31
  • C
Arbitrary Code Injection

<0.19.0-r31
  • L
GHSA-33qr-2xwr-95pw

<0.19.0-r31
  • L
GHSA-xx6v-rp6x-q39c

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
GHSA-8qq5-rm4j-mr97

<0.19.0-r31
  • L
GHSA-4vvj-4cpr-p986

<0.19.0-r31
  • L
GHSA-q856-gh5w-3vwg

<0.19.0-r31
  • L
GHSA-g9q4-qjx4-2v7q

<0.19.0-r31
  • L
GHSA-9gqv-wp59-fq42

<0.19.0-r31
  • L
GHSA-cqrx-3m42-5p5w

<0.19.0-r31
  • M
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • H
CVE-2024-21536

<0.19.0-r31
  • L
GHSA-jrmj-c5cx-3cw6

<0.19.0-r31
  • L
GHSA-prjf-86w9-mfqv

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
GHSA-vpq2-c234-7xj6

<0.19.0-r31
  • L
GHSA-hfxv-24rg-xrqf

<0.19.0-r31
  • L
Arbitrary Code Injection

<0.19.0-r31
  • L
CVE-2025-15284

<0.19.0-r31
  • L
GHSA-68g3-2p3g-w9pq

<0.19.0-r31
  • L
GHSA-48r7-hpm6-gfxm

<0.19.0-r31
  • L
GHSA-64mm-vxmg-q3vj

<0.19.0-r31
  • L
CVE-2026-3449

<0.19.0-r31
  • L
GHSA-v4m2-x4rp-hv22

<0.19.0-r31
  • L
GHSA-xvqr-69v8-f3gv

<0.19.0-r31
  • L
GHSA-7wwx-xj66-r44x

<0.19.0-r31
  • L
GHSA-pxg6-pf52-xh8x

<0.19.0-r31
  • L
GHSA-hjx7-fpxx-mj48

<0.19.0-r31
  • L
GHSA-gm9r-q53w-2gh4

<0.19.0-r31
  • H
Resource Exhaustion

<0.19.0-r31
  • L
GHSA-fjxv-7rqg-78g4

<0.19.0-r31
  • M
CVE-2025-32996

<0.19.0-r31
  • L
GHSA-xxjr-mmjv-4gpg

<0.19.0-r31
  • L
GHSA-w4h2-22wh-m6jx

<0.19.0-r31
  • L
GHSA-vmf3-w455-68vh

<0.19.0-r31
  • L
GHSA-hmw2-7cc7-3qxx

<0.19.0-r31
  • M
Improper Handling of Unicode Encoding

<0.19.0-r31
  • M
Integer Overflow or Wraparound

<0.19.0-r31
  • L
GHSA-9ppj-qmqm-q256

<0.19.0-r31
  • L
Improper Input Validation

<0.19.0-r31
  • H
Exposure of Resource to Wrong Sphere

<0.19.0-r31
  • L
GHSA-q67f-28xg-22rw

<0.19.0-r31
  • C
Unintended Proxy or Intermediary ('Confused Deputy')

<0.19.0-r31
  • L
GHSA-2g4f-4pwh-qvx6

<0.19.0-r31
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r31
  • L
Server-Side Request Forgery (SSRF)

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
Unintended Proxy or Intermediary ('Confused Deputy')

<0.19.0-r31
  • L
GHSA-968p-4wvh-cqc8

<0.19.0-r31
  • L
Algorithmic Complexity

<0.19.0-r31
  • L
GHSA-76c9-3jph-rj3q

<0.19.0-r31
  • L
GHSA-2328-f5f3-gj25

<0.19.0-r31
  • L
GHSA-3p68-rc4w-qgx5

<0.19.0-r31
  • L
GHSA-35jp-ww65-95wh

<0.19.0-r31
  • L
GHSA-rgjc-h3x7-9mwg

<0.19.0-r31
  • L
Information Exposure Through Caching

<0.19.0-r31
  • L
GHSA-447v-2qg4-h8hc

<0.19.0-r31
  • L
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
GHSA-pvrg-q6jw-42p7

<0.19.0-r31
  • L
CVE-2024-24787

<0.19.0-r31
  • L
GHSA-9f76-wg39-x86h

<0.19.0-r31
  • L
Cross-site Scripting (XSS)

<0.19.0-r31
  • C
Arbitrary Code Injection

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • C
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r31
  • L
Inefficient Regular Expression Complexity

<0.19.0-r31
  • L
GHSA-62hf-57xw-28j9

<0.19.0-r31
  • L
GHSA-qj8w-gfj5-8c6v

<0.19.0-r31
  • L
Directory Traversal

<0.19.0-r31
  • L
GHSA-xrjj-mj9h-534m

<0.19.0-r31
  • L
GHSA-q8qp-cvcw-x6jj

<0.19.0-r31
  • H
Server-Side Request Forgery (SSRF)

<0.19.0-r31
  • C
CVE-2026-4800

<0.19.0-r31
  • H
CVE-2024-29180

<0.19.0-r31
  • L
GHSA-vf2m-468p-8v99

<0.19.0-r31
  • L
GHSA-vv9m-32rr-3g55

<0.19.0-r31
  • L
GHSA-h355-32pf-p2xm

<0.19.0-r31
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r31
  • L
HTTP Response Splitting

<0.19.0-r31
  • M
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • M
Origin Validation Error

<0.19.0-r31
  • L
GHSA-5fq7-4mxc-535h

<0.19.0-r31
  • L
CVE-2025-7783

<0.19.0-r31
  • L
GHSA-952p-6rrq-rcjv

<0.19.0-r31
  • L
GHSA-4hjh-wcwx-xvwj

<0.19.0-r31
  • L
GHSA-48c2-rrv3-qjmp

<0.19.0-r31
  • H
CVE-2023-45285

<0.19.0-r31
  • L
GHSA-3g43-6gmg-66jw

<0.19.0-r31
  • H
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r31
  • L
CVE-2025-47912

<0.19.0-r31
  • L
GHSA-c75v-2vq8-878f

<0.19.0-r31
  • L
Directory Traversal

<0.19.0-r31
  • H
Resource Exhaustion

<0.19.0-r31
  • L
Interpretation Conflict

<0.19.0-r31
  • M
Directory Traversal

<0.19.0-r31
  • L
GHSA-rjcg-56ph-3qvg

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • L
Improper Check for Unusual or Exceptional Conditions

<0.19.0-r31
  • L
CVE-2024-21534

<0.19.0-r31
  • L
GHSA-fgmj-fm8m-jvvx

<0.19.0-r31
  • H
Resource Exhaustion

<0.19.0-r31
  • H
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • C
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r31
  • C
Permissive Whitelist

<0.19.0-r31
  • L
CVE-2025-61725

<0.19.0-r31
  • L
CVE-2025-22871

<0.19.0-r31
  • L
GHSA-ppp5-5v6c-4jwp

<0.19.0-r31
  • H
CVE-2026-2391

<0.19.0-r31
  • H
Directory Traversal

<0.19.0-r31
  • H
Out-of-bounds Write

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
GHSA-9jgg-88mc-972h

<0.19.0-r31
  • L
GHSA-r6q2-hw4h-h46w

<0.19.0-r31
  • L
GHSA-6rw7-vpxm-498p

<0.19.0-r31
  • L
GHSA-cfp9-33rc-j74f

<0.19.0-r31
  • L
Directory Traversal

<0.19.0-r31
  • L
GHSA-8fgc-7cc6-rx7x

<0.19.0-r31
  • L
GHSA-qffp-2rhf-9h96

<0.19.0-r31
  • H
CVE-2022-41715

<0.19.0-r31
  • L
GHSA-58qx-3vcg-4xpx

<0.19.0-r31
  • L
GHSA-5m6q-g25r-mvwx

<0.19.0-r31
  • H
Arbitrary Code Injection

<0.19.0-r31
  • L
GHSA-qh38-484v-w52x

<0.19.0-r31
  • L
GHSA-692r-grfm-v8x7

<0.19.0-r31
  • L
GHSA-89mw-w342-mqrr

<0.19.0-r31
  • L
Link Following

<0.19.0-r31
  • L
GHSA-73rr-hh4g-fpgx

<0.19.0-r31
  • L
GHSA-f8f7-69v5-w4vx

<0.19.0-r31
  • M
Cross-site Scripting (XSS)

<0.19.0-r31
  • L
GHSA-wr3j-pwj9-hqq6

<0.19.0-r31
  • L
GHSA-vvpx-j8f3-3w6h

<0.19.0-r31
  • M
Exposed Dangerous Method or Function

<0.19.0-r31
  • L
GHSA-x9g3-xrwr-cwfg

<0.19.0-r31
  • H
Resource Exhaustion

<0.19.0-r31
  • L
GHSA-5c9x-8gcm-mpgx

<0.19.0-r31
  • L
GHSA-777c-7fjr-54vf

<0.19.0-r31
  • H
Integer Overflow or Wraparound

<0.19.0-r31
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r31
  • M
CVE-2026-9595

<0.19.0-r31
  • L
Improper Certificate Validation

<0.19.0-r31
  • L
GHSA-679v-hh23-h5jh

<0.19.0-r31
  • L
Improper Verification of Cryptographic Signature

<0.19.0-r31
  • L
GHSA-cvf9-g74c-vv79

<0.19.0-r31
  • C
CVE-2025-68121

<0.19.0-r31
  • L
GHSA-wcw9-47fp-rrfr

<0.19.0-r31
  • C
Arbitrary Code Injection

<0.19.0-r31
  • M
Directory Traversal

<0.19.0-r31
  • L
Arbitrary Code Injection

<0.19.0-r31
  • L
GHSA-rxx3-4978-3cc9

<0.19.0-r31
  • L
CVE-2025-4674

<0.19.0-r31
  • H
Resource Exhaustion

<0.19.0-r31
  • L
GHSA-w5hq-g745-h8pq

<0.19.0-r31
  • L
Inefficient Regular Expression Complexity

<0.19.0-r25
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<0.19.0-r25
  • L
GHSA-c2c7-rcm5-vvqj

<0.19.0-r25
  • L
GHSA-3v7f-55p6-f55p

<0.19.0-r25
  • L
GHSA-58c5-g7wp-6w37

<0.19.0-r24
  • L
Information Exposure

<0.19.0-r24
  • L
GHSA-23c5-xmqv-rm74

<0.19.0-r23
  • H
Inefficient Regular Expression Complexity

<0.19.0-r23
  • L
GHSA-7r86-cg39-jmmj

<0.19.0-r23
  • L
Resource Exhaustion

<0.19.0-r21
  • L
Algorithmic Complexity

<0.19.0-r23
  • L
GHSA-6v7p-g79w-8964

<0.19.0-r21
  • L
GHSA-3ppc-4f35-3m26

<0.19.0-r23
  • L
GHSA-5239-wwwm-4pmq

<0.19.0-r21
  • L
Inefficient Regular Expression Complexity

<0.19.0-r23
  • M
Information Exposure

<0.19.0-r21
  • L
GHSA-qccp-gfcp-xxvc

<0.19.0-r21
  • M
Inefficient Regular Expression Complexity

<0.19.0-r21
  • L
GHSA-65pc-fj4g-8rjx

<0.19.0-r21
  • H
Improper Handling of Highly Compressed Data (Data Amplification)

<0.19.0-r21
  • L
GHSA-mf9v-mfxr-j63j

<0.19.0-r21
  • L
GHSA-jg22-mg44-37j8

<0.19.0-r18
  • H
Origin Validation Error

<0.19.0-r18
  • L
CVE-2026-27145

<0.19.0-r18
  • L
GHSA-hg6j-4rv6-33pg

<0.19.0-r18
  • L
CVE-2026-42507

<0.19.0-r18
  • H
Deserialization of Untrusted Data

<0.19.0-r18
  • L
GHSA-4279-q6mj-392r

<0.19.0-r18
  • L
GHSA-h3gm-q7m7-mp28

<0.19.0-r18
  • L
GHSA-8g2r-hhvj-mv99

<0.19.0-r15
  • H
NULL Pointer Dereference

<0.19.0-r15
  • L
GHSA-2283-wf8c-rw8r

<0.19.0-r15
  • L
GHSA-5m4p-2gjx-p2g8

<0.19.0-r15
  • L
GHSA-497x-jcxf-m478

<0.19.0-r15
  • M
Out-of-bounds Write

<0.19.0-r15
  • L
GHSA-3v2c-x6q9-f697

<0.19.0-r15
  • L
CVE-2026-42501

<0.19.0-r15
  • L
GHSA-qf3q-3h68-mmh2

<0.19.0-r15
  • L
CVE-2026-6357

<0.19.0-r15
  • M
Link Following

<0.19.0-r15
  • L
GHSA-jp4c-xjxw-mgf9

<0.19.0-r15
  • L
Cross-site Scripting (XSS)

<0.19.0-r15
  • H
Double Free

<0.19.0-r15
  • L
Improper Encoding or Escaping of Output

<0.19.0-r15
  • L
GHSA-qc64-m6c2-v4x7

<0.19.0-r15
  • H
Improper Handling of Highly Compressed Data (Data Amplification)

<0.19.0-r14
  • L
CVE-2026-3219

<0.19.0-r14
  • L
GHSA-58qw-9mgm-455v

<0.19.0-r14
  • L
GHSA-38jv-5279-wg99

<0.19.0-r14
  • L
GHSA-5w89-2c2x-6x66

<0.19.0-r17
  • H
Improper Certificate Validation

<0.19.0-r17
  • H
Incorrect Authorization

<0.19.0-r17
  • L
CVE-2026-32280

<0.19.0-r17
  • L
GHSA-gjvh-7jh8-7xhm

<0.19.0-r17
  • L
GHSA-m4pr-4j3g-9v7v

<0.19.0-r17
  • M
Cross-site Scripting (XSS)

<0.19.0-r17
  • L
GHSA-7mr4-xjxg-34g6

<0.19.0-r17
  • L
GHSA-gm62-xv2j-4w53

<0.19.0-r15
  • M
Insecure Temporary File

<0.19.0-r14
  • L
GHSA-7gcm-g887-7qv7

<0.19.0-r12
  • L
GHSA-pq67-6m6q-mj2v

<0.19.0-r15
  • L
GHSA-gc5v-m9x4-r6x2

<0.19.0-r14
  • M
Open Redirect

<0.19.0-r15
  • L
GHSA-48p4-8xcf-vxj5

<0.19.0-r3
  • H
CVE-2026-0994

<0.19.0-r12
  • H
Allocation of Resources Without Limits or Throttling

<0.19.0-r15
  • M
Open Redirect

<0.19.0-r3
  • L
GHSA-2xpw-w6gg-jr37

<0.19.0-r15
  • H
Improper Handling of Highly Compressed Data (Data Amplification)

<0.19.0-r15
  • L
Improper Authorization

<0.19.0-r8
  • L
GHSA-p77j-4mvh-x3m3

<0.19.0-r8
  • H
CVE-2025-15558

<0.19.0-r6
  • L
GHSA-p436-gjf2-799p

<0.19.0-r6
  • L
GHSA-8rrh-rw8j-w5fx

<0.19.0-r5
  • L
CVE-2026-1703

<0.19.0-r5
  • M
Directory Traversal

<0.19.0-r5
  • L
GHSA-6vgw-5pg2-w6jp

<0.19.0-r5
  • L
Directory Traversal

<0.19.0-r4
  • L
GHSA-63vm-454h-vhhq

<0.19.0-r4
  • L
Allocation of Resources Without Limits or Throttling

<0.19.0-r4
  • L
GHSA-58pv-8j8x-9vj2

<0.19.0-r4
  • L
GHSA-hcg3-q754-cr77

<0.17.0-r11
  • L
GHSA-6v2p-p543-phr9

<0.17.0-r12
  • L
GHSA-5mh9-3jwc-rp59

<0.19.0-r2
  • L
Improper Certificate Validation

<0.19.0-r2
  • L
Improper Certificate Validation

<0.19.0-r2
  • L
GHSA-7c64-f9jr-v9h2

<0.19.0-r2
  • L
CVE-2025-58181

<0.19.0-r1
  • L
GHSA-f6x5-jh6r-wrfv

<0.19.0-r1
  • L
GHSA-j5w8-q4qc-rx2x

<0.19.0-r1
  • L
CVE-2025-47914

<0.19.0-r1
  • L
CVE-2025-47910

<0.18.0-r9
  • M
Missing Initialization of Resource

<0.18.0-r8
  • L
Race Condition

<0.18.0-r7
  • L
Insufficiently Protected Credentials

<0.18.0-r6
  • M
CVE-2023-45803

<0.18.0-r0
  • H
Insufficient Verification of Data Authenticity

<0.18.0-r0
  • L
Asymmetric Resource Consumption (Amplification)

<0.17.0-r14
  • L
CVE-2024-34156

<0.17.0-r13
  • L
CVE-2024-34158

<0.17.0-r13
  • L
CVE-2024-41110

<0.17.0-r13
  • L
CVE-2024-34155

<0.17.0-r13
  • L
CVE-2025-22870

<0.17.0-r13
  • L
CVE-2025-22868

<0.17.0-r12
  • L
CVE-2025-22869

<0.17.0-r11
  • L
CVE-2024-45341

<0.17.0-r9
  • L
CVE-2024-45336

<0.17.0-r9
  • L
CVE-2024-45338

<0.17.0-r8
  • L
CVE-2024-45337

<0.17.0-r7
  • L
Improper Handling of Exceptional Conditions

<0.17.0-r6
  • L
Arbitrary Code Injection

<0.18.0-r0
  • M
CVE-2024-37891

<0.18.0-r0
  • M
Insecure Storage of Sensitive Information

<0.16.0-r12
  • M
CVE-2024-24789

<0.16.0-r12
  • C
CVE-2024-24790

<0.16.0-r12
  • L
CVE-2024-35195

<0.18.0-r0
  • L
CVE-2024-34062

<0.16.0-r9
  • H
Inefficient Regular Expression Complexity

<0.18.0-r0
  • L
CVE-2023-45288

<0.16.0-r8
  • H
Origin Validation Error

<0.16.0-r7
  • L
CVE-2024-24786

<0.16.0-r6
  • L
CVE-2023-45289

<0.16.0-r5
  • L
CVE-2024-24785

<0.16.0-r5
  • L
CVE-2023-45290

<0.16.0-r5
  • L
CVE-2024-24783

<0.16.0-r5
  • L
CVE-2024-24784

<0.16.0-r5
  • M
Improper Validation of Integrity Check Value

<0.16.0-r2
  • H
CVE-2023-44487

<0.16.0-r0
  • H
Allocation of Resources Without Limits or Throttling

<0.15.0-r7
  • M
Cross-site Scripting (XSS)

<0.15.0-r7