| GHSA-mh68-qf2j-8c5g | |
| Cross-site Scripting (XSS) | |
| GHSA-pf86-5x62-jrwf | |
| GHSA-7qhm-5mxq-x7vp | |
| GHSA-43fc-jf86-j433 | |
| GHSA-v2v4-37r5-5v8g | |
| Uncontrolled Recursion | |
| Resource Exhaustion | |
| GHSA-wf6x-7x77-mvgw | |
| Server-Side Request Forgery (SSRF) | |
| Uncontrolled Recursion | |
| Cross-site Scripting (XSS) | |
| CVE-2026-12143 | |
| GHSA-898c-q2cr-xwhg | |
| CVE-2023-39326 | |
| Cross-site Scripting (XSS) | |
| Use of Uninitialized Resource | |
| Reversible One-Way Hash | |
| GHSA-m3hq-grv6-h853 | |
| GHSA-67mh-4wv8-2f99 | |
| CVE-2022-41723 | |
| CVE-2025-22873 | |
| Cross-site Scripting (XSS) | |
| GHSA-9f7g-gqwh-jpf5 | |
| GHSA-q7cg-457f-vx79 | |
| GHSA-37ch-88jc-xwx2 | |
| GHSA-c9hr-fvm9-7c49 | |
| Resource Exhaustion | |
| GHSA-m7pr-hjqh-92cm | |
| Direct Request ('Forced Browsing') | |
| GHSA-p3p7-9h4w-jqw2 | |
| GHSA-j5f8-grm9-p9fc | |
| GHSA-8jvr-vh7g-f8gx | |
| Allocation of Resources Without Limits or Throttling | |
| CVE-2026-42505 | |
| GHSA-r5fr-rjxr-66jc | |
| GHSA-888h-rm2r-vrc7 | |
| Arbitrary Code Injection | |
| Improper Input Validation | |
| Directory Traversal | |
| GHSA-qpx9-hpmf-5gmw | |
| Uncaught Exception | |
| GHSA-83g3-92jg-28cx | |
| GHSA-4x5r-pxfx-6jf8 | |
| GHSA-fp86-2355-v99r | |
| CVE-2026-45249 | |
| GHSA-ff52-ph69-cf7x | |
| GHSA-wprm-fgrx-xj42 | |
| Improper Input Validation | |
| GHSA-8v5j-pwr7-w5f8 | |
| CVE-2022-41716 | |
| CVE-2026-2950 | |
| GHSA-hw49-2p59-3mhj | |
| GHSA-445q-vr5w-6q77 | |
| GHSA-6chq-wfr3-2hj9 | |
| CVE-2026-27143 | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| GHSA-w9j2-pvgh-6h63 | |
| GHSA-mh29-5h37-fv8m | |
| Improper Encoding or Escaping of Output | |
| Directory Traversal | |
| Uncontrolled Recursion | |
| Information Exposure | |
| GHSA-79cf-xcqc-c78w | |
| GHSA-96hv-2xvq-fx4p | |
| CVE-2026-39822 | |
| GHSA-q8mj-m7cp-5q26 | |
| CVE-2025-32997 | |
| GHSA-5c6j-r48x-rmvq | |
| Directory Traversal | |
| GHSA-p92q-9vqr-4j8v | |
| Server-Side Request Forgery (SSRF) | |
| GHSA-gwrf-jf3h-w649 | |
| GHSA-pmwg-cvhr-8vh7 | |
| GHSA-fv7c-fp4j-7gwp | |
| CVE-2024-47764 | |
| GHSA-25h7-pfq9-p65f | |
| GHSA-r4q5-vmmm-2653 | |
| GHSA-ph9p-34f9-6g65 | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| Cross-site Scripting (XSS) | |
| CVE-2025-12816 | |
| GHSA-v4hv-rgfq-gp49 | |
| Arbitrary Code Injection | |
| GHSA-554w-wpv2-vw27 | |
| Cross-site Scripting (XSS) | |
| GHSA-rv83-g57w-fr8j | |
| GHSA-677m-j7p3-52f9 | |
| GHSA-xc82-5m89-g4jv | |
| CVE-2023-24540 | |
| GHSA-jwmf-chvc-rf92 | |
| GHSA-62jj-gr2r-5c34 | |
| Allocation of Resources Without Limits or Throttling | |
| HTTP Request Smuggling | |
| CVE-2025-61730 | |
| GHSA-c7qv-q95q-8v27 | |
| GHSA-f2cj-5636-4j38 | |
| GHSA-f23m-r3pf-42rh | |
| Improperly Controlled Modification of Dynamically-Determined Object Attributes | |
| GHSA-mwcw-c2x4-8c55 | |
| GHSA-vq7j-gx56-rxjh | |
| GHSA-fvcv-3m26-pcqx | |
| CVE-2025-13465 | |
| GHSA-3w6x-2g7m-8v23 | |
| GHSA-72xf-g2v4-qvf3 | |
| Cross-site Scripting (XSS) | |
| HTTP Response Splitting | |
| Allocation of Resources Without Limits or Throttling | |
| CRLF Injection | |
| GHSA-hw8r-x6gr-5gjp | |
| Information Exposure Through Log Files | |
| GHSA-mx8g-39q3-5c79 | |
| Inefficient Regular Expression Complexity | |
| GHSA-j4j7-vw47-rhfq | |
| CVE-2025-61732 | |
| GHSA-9gcr-gp5f-jw27 | |
| CVE-2025-58183 | |
| CVE-2024-24791 | |
| Cross-site Scripting (XSS) | |
| Directory Traversal | |
| GHSA-w7fw-mjwx-w883 | |
| GHSA-xcgv-8mv7-v8c7 | |
| GHSA-52f5-9888-hmc6 | |
| CVE-2025-4673 | |
| CVE-2022-27664 | |
| GHSA-gr56-3gp6-6gmj | |
| GHSA-h67p-54hq-rp68 | |
| Interpretation Conflict | |
| Cross-site Scripting (XSS) | |
| GHSA-pppg-cpfq-h7wr | |
| Improper Certificate Validation | |
| GHSA-q6f4-qqrg-jv6x | |
| GHSA-2jcg-qqmg-46q6 | |
| GHSA-4v9v-hfq4-rm2v | |
| GHSA-39pv-4j6c-2g6v | |
| CVE-2025-61731 | |
| GHSA-3xgq-45jj-v275 | |
| Resource Exhaustion | |
| Resource Exhaustion | |
| CVE-2025-1302 | |
| Resource Exhaustion | |
| GHSA-f886-m6hf-6m8v | |
| Directory Traversal | |
| GHSA-fqpx-62jv-7r6r | |
| GHSA-5wvm-rxcf-6cg8 | |
| CVE-2024-21538 | |
| GHSA-fp44-cj2j-3jhx | |
| GHSA-69cg-p879-7622 | |
| CVE-2023-39323 | |
| GHSA-j3gx-2473-5fp8 | |
| GHSA-cxq7-xw9v-rcv3 | |
| Resource Exhaustion | |
| Information Exposure | |
| Link Following | |
| GHSA-38r7-794h-5758 | |
| GHSA-p8p7-x288-28g6 | |
| GHSA-4www-5p9h-95mh | |
| CVE-2023-24531 | |
| GHSA-f3m7-gqxr-g87x | |
| GHSA-g9pc-8g42-g6vq | |
| CVE-2025-58186 | |
| GHSA-4vpj-hr3r-4gpg | |
| CVE-2026-6402 | |
| GHSA-jw54-c8rr-pjpq | |
| Information Exposure | |
| GHSA-xhjh-pmcv-23jw | |
| GHSA-5f94-vhjq-rpg8 | |
| CVE-2024-4067 | |
| GHSA-34x7-hfp2-rc4v | |
| GHSA-3q6h-q44p-xw88 | |
| GHSA-x2w5-7wp4-5qff | |
| Improper Authentication | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-p3vc-36g9-x9gr | |
| CVE-2026-4867 | |
| Access of Resource Using Incompatible Type ('Type Confusion') | |
| GHSA-5v64-wcgg-87wf | |
| CVE-2026-8723 | |
| GHSA-qx2v-qp2m-jg93 | |
| GHSA-58w9-8g37-x9v5 | |
| Uncontrolled Recursion | |
| GHSA-5gfm-wpxj-wjgq | |
| GHSA-rf6f-7fwh-wjgh | |
| Allocation of Resources Without Limits or Throttling | |
| Incorrect Calculation | |
| GHSA-65ch-62r8-g69g | |
| GHSA-cwpg-qgc6-jxvq | |
| Permissive Whitelist | |
| GHSA-frhw-mqj2-wxw2 | |
| CVE-2025-7339 | |
| CVE-2026-39824 | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| CVE-2025-47906 | |
| CVE-2024-55565 | |
| Algorithmic Complexity | |
| Arbitrary Code Injection | |
| Arbitrary Code Injection | |
| GHSA-33qr-2xwr-95pw | |
| GHSA-xx6v-rp6x-q39c | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-8qq5-rm4j-mr97 | |
| GHSA-4vvj-4cpr-p986 | |
| GHSA-q856-gh5w-3vwg | |
| GHSA-g9q4-qjx4-2v7q | |
| GHSA-9gqv-wp59-fq42 | |
| GHSA-cqrx-3m42-5p5w | |
| Allocation of Resources Without Limits or Throttling | |
| CVE-2024-21536 | |
| GHSA-jrmj-c5cx-3cw6 | |
| GHSA-prjf-86w9-mfqv | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-vpq2-c234-7xj6 | |
| GHSA-hfxv-24rg-xrqf | |
| Arbitrary Code Injection | |
| CVE-2025-15284 | |
| GHSA-68g3-2p3g-w9pq | |
| GHSA-48r7-hpm6-gfxm | |
| GHSA-64mm-vxmg-q3vj | |
| CVE-2026-3449 | |
| GHSA-v4m2-x4rp-hv22 | |
| GHSA-xvqr-69v8-f3gv | |
| GHSA-7wwx-xj66-r44x | |
| GHSA-pxg6-pf52-xh8x | |
| GHSA-hjx7-fpxx-mj48 | |
| GHSA-gm9r-q53w-2gh4 | |
| Resource Exhaustion | |
| GHSA-fjxv-7rqg-78g4 | |
| CVE-2025-32996 | |
| GHSA-xxjr-mmjv-4gpg | |
| GHSA-w4h2-22wh-m6jx | |
| GHSA-vmf3-w455-68vh | |
| GHSA-hmw2-7cc7-3qxx | |
| Improper Handling of Unicode Encoding | |
| Integer Overflow or Wraparound | |
| GHSA-9ppj-qmqm-q256 | |
| Improper Input Validation | |
| Exposure of Resource to Wrong Sphere | |
| GHSA-q67f-28xg-22rw | |
| Unintended Proxy or Intermediary ('Confused Deputy') | |
| GHSA-2g4f-4pwh-qvx6 | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Server-Side Request Forgery (SSRF) | |
| Allocation of Resources Without Limits or Throttling | |
| Allocation of Resources Without Limits or Throttling | |
| Unintended Proxy or Intermediary ('Confused Deputy') | |
| GHSA-968p-4wvh-cqc8 | |
| Algorithmic Complexity | |
| GHSA-76c9-3jph-rj3q | |
| GHSA-2328-f5f3-gj25 | |
| GHSA-3p68-rc4w-qgx5 | |
| GHSA-35jp-ww65-95wh | |
| GHSA-rgjc-h3x7-9mwg | |
| Information Exposure Through Caching | |
| GHSA-447v-2qg4-h8hc | |
| Cross-site Scripting (XSS) | |
| GHSA-pvrg-q6jw-42p7 | |
| CVE-2024-24787 | |
| GHSA-9f76-wg39-x86h | |
| Cross-site Scripting (XSS) | |
| Arbitrary Code Injection | |
| Cross-site Scripting (XSS) | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Inefficient Regular Expression Complexity | |
| GHSA-62hf-57xw-28j9 | |
| GHSA-qj8w-gfj5-8c6v | |
| Directory Traversal | |
| GHSA-xrjj-mj9h-534m | |
| GHSA-q8qp-cvcw-x6jj | |
| Server-Side Request Forgery (SSRF) | |
| CVE-2026-4800 | |
| CVE-2024-29180 | |
| GHSA-vf2m-468p-8v99 | |
| GHSA-vv9m-32rr-3g55 | |
| GHSA-h355-32pf-p2xm | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| HTTP Response Splitting | |
| Allocation of Resources Without Limits or Throttling | |
| Origin Validation Error | |
| GHSA-5fq7-4mxc-535h | |
| CVE-2025-7783 | |
| GHSA-952p-6rrq-rcjv | |
| GHSA-4hjh-wcwx-xvwj | |
| GHSA-48c2-rrv3-qjmp | |
| CVE-2023-45285 | |
| GHSA-3g43-6gmg-66jw | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| CVE-2025-47912 | |
| GHSA-c75v-2vq8-878f | |
| Directory Traversal | |
| Resource Exhaustion | |
| Interpretation Conflict | |
| Directory Traversal | |
| GHSA-rjcg-56ph-3qvg | |
| Allocation of Resources Without Limits or Throttling | |
| Improper Check for Unusual or Exceptional Conditions | |
| CVE-2024-21534 | |
| GHSA-fgmj-fm8m-jvvx | |
| Resource Exhaustion | |
| Allocation of Resources Without Limits or Throttling | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Permissive Whitelist | |
| CVE-2025-61725 | |
| CVE-2025-22871 | |
| GHSA-ppp5-5v6c-4jwp | |
| CVE-2026-2391 | |
| Directory Traversal | |
| Out-of-bounds Write | |
| Cross-site Scripting (XSS) | |
| GHSA-9jgg-88mc-972h | |
| GHSA-r6q2-hw4h-h46w | |
| GHSA-6rw7-vpxm-498p | |
| GHSA-cfp9-33rc-j74f | |
| Directory Traversal | |
| GHSA-8fgc-7cc6-rx7x | |
| GHSA-qffp-2rhf-9h96 | |
| CVE-2022-41715 | |
| GHSA-58qx-3vcg-4xpx | |
| GHSA-5m6q-g25r-mvwx | |
| Arbitrary Code Injection | |
| GHSA-qh38-484v-w52x | |
| GHSA-692r-grfm-v8x7 | |
| GHSA-89mw-w342-mqrr | |
| Link Following | |
| GHSA-73rr-hh4g-fpgx | |
| GHSA-f8f7-69v5-w4vx | |
| Cross-site Scripting (XSS) | |
| GHSA-wr3j-pwj9-hqq6 | |
| GHSA-vvpx-j8f3-3w6h | |
| Exposed Dangerous Method or Function | |
| GHSA-x9g3-xrwr-cwfg | |
| Resource Exhaustion | |
| GHSA-5c9x-8gcm-mpgx | |
| GHSA-777c-7fjr-54vf | |
| Integer Overflow or Wraparound | |
| Allocation of Resources Without Limits or Throttling | |
| CVE-2026-9595 | |
| Improper Certificate Validation | |
| GHSA-679v-hh23-h5jh | |
| Improper Verification of Cryptographic Signature | |
| GHSA-cvf9-g74c-vv79 | |
| CVE-2025-68121 | |
| GHSA-wcw9-47fp-rrfr | |
| Arbitrary Code Injection | |
| Directory Traversal | |
| Arbitrary Code Injection | |
| GHSA-rxx3-4978-3cc9 | |
| CVE-2025-4674 | |
| Resource Exhaustion | |
| GHSA-w5hq-g745-h8pq | |
| Inefficient Regular Expression Complexity | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| GHSA-c2c7-rcm5-vvqj | |
| GHSA-3v7f-55p6-f55p | |
| GHSA-58c5-g7wp-6w37 | |
| Information Exposure | |
| GHSA-23c5-xmqv-rm74 | |
| Inefficient Regular Expression Complexity | |
| GHSA-7r86-cg39-jmmj | |
| Resource Exhaustion | |
| Algorithmic Complexity | |
| GHSA-6v7p-g79w-8964 | |
| GHSA-3ppc-4f35-3m26 | |
| GHSA-5239-wwwm-4pmq | |
| Inefficient Regular Expression Complexity | |
| Information Exposure | |
| GHSA-qccp-gfcp-xxvc | |
| Inefficient Regular Expression Complexity | |
| GHSA-65pc-fj4g-8rjx | |
| Improper Handling of Highly Compressed Data (Data Amplification) | |
| GHSA-mf9v-mfxr-j63j | |
| GHSA-jg22-mg44-37j8 | |
| Origin Validation Error | |
| CVE-2026-27145 | |
| GHSA-hg6j-4rv6-33pg | |
| CVE-2026-42507 | |
| Deserialization of Untrusted Data | |
| GHSA-4279-q6mj-392r | |
| GHSA-h3gm-q7m7-mp28 | |
| GHSA-8g2r-hhvj-mv99 | |
| NULL Pointer Dereference | |
| GHSA-2283-wf8c-rw8r | |
| GHSA-5m4p-2gjx-p2g8 | |
| GHSA-497x-jcxf-m478 | |
| Out-of-bounds Write | |
| GHSA-3v2c-x6q9-f697 | |
| CVE-2026-42501 | |
| GHSA-qf3q-3h68-mmh2 | |
| CVE-2026-6357 | |
| Link Following | |
| GHSA-jp4c-xjxw-mgf9 | |
| Cross-site Scripting (XSS) | |
| Double Free | |
| Improper Encoding or Escaping of Output | |
| GHSA-qc64-m6c2-v4x7 | |
| Improper Handling of Highly Compressed Data (Data Amplification) | |
| CVE-2026-3219 | |
| GHSA-58qw-9mgm-455v | |
| GHSA-38jv-5279-wg99 | |
| GHSA-5w89-2c2x-6x66 | |
| Improper Certificate Validation | |
| Incorrect Authorization | |
| CVE-2026-32280 | |
| GHSA-gjvh-7jh8-7xhm | |
| GHSA-m4pr-4j3g-9v7v | |
| Cross-site Scripting (XSS) | |
| GHSA-7mr4-xjxg-34g6 | |
| GHSA-gm62-xv2j-4w53 | |
| Insecure Temporary File | |
| GHSA-7gcm-g887-7qv7 | |
| GHSA-pq67-6m6q-mj2v | |
| GHSA-gc5v-m9x4-r6x2 | |
| Open Redirect | |
| GHSA-48p4-8xcf-vxj5 | |
| CVE-2026-0994 | |
| Allocation of Resources Without Limits or Throttling | |
| Open Redirect | |
| GHSA-2xpw-w6gg-jr37 | |
| Improper Handling of Highly Compressed Data (Data Amplification) | |
| Improper Authorization | |
| GHSA-p77j-4mvh-x3m3 | |
| CVE-2025-15558 | |
| GHSA-p436-gjf2-799p | |
| GHSA-8rrh-rw8j-w5fx | |
| CVE-2026-1703 | |
| Directory Traversal | |
| GHSA-6vgw-5pg2-w6jp | |
| Directory Traversal | |
| GHSA-63vm-454h-vhhq | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-58pv-8j8x-9vj2 | |
| GHSA-hcg3-q754-cr77 | |
| GHSA-6v2p-p543-phr9 | |
| GHSA-5mh9-3jwc-rp59 | |
| Improper Certificate Validation | |
| Improper Certificate Validation | |
| GHSA-7c64-f9jr-v9h2 | |
| CVE-2025-58181 | |
| GHSA-f6x5-jh6r-wrfv | |
| GHSA-j5w8-q4qc-rx2x | |
| CVE-2025-47914 | |
| CVE-2025-47910 | |
| Missing Initialization of Resource | |
| Race Condition | |
| Insufficiently Protected Credentials | |
| CVE-2023-45803 | |
| Insufficient Verification of Data Authenticity | |
| Asymmetric Resource Consumption (Amplification) | |
| CVE-2024-34156 | |
| CVE-2024-34158 | |
| CVE-2024-41110 | |
| CVE-2024-34155 | |
| CVE-2025-22870 | |
| CVE-2025-22868 | |
| CVE-2025-22869 | |
| CVE-2024-45341 | |
| CVE-2024-45336 | |
| CVE-2024-45338 | |
| CVE-2024-45337 | |
| Improper Handling of Exceptional Conditions | |
| Arbitrary Code Injection | |
| CVE-2024-37891 | |
| Insecure Storage of Sensitive Information | |
| CVE-2024-24789 | |
| CVE-2024-24790 | |
| CVE-2024-35195 | |
| CVE-2024-34062 | |
| Inefficient Regular Expression Complexity | |
| CVE-2023-45288 | |
| Origin Validation Error | |
| CVE-2024-24786 | |
| CVE-2023-45289 | |
| CVE-2024-24785 | |
| CVE-2023-45290 | |
| CVE-2024-24783 | |
| CVE-2024-24784 | |
| Improper Validation of Integrity Check Value | |
| CVE-2023-44487 | |
| Allocation of Resources Without Limits or Throttling | |
| Cross-site Scripting (XSS) | |