| Inefficient Regular Expression Complexity | |
| GHSA-wc69-rhjr-hc9g | |
| GHSA-8hfj-j24r-96c4 | |
| Directory Traversal | |
| GHSA-f6ww-3ggp-fr8h | |
| GHSA-2v35-w6hq-6mfw | |
| Uncontrolled Recursion | |
| GHSA-crh6-fp67-6883 | |
| GHSA-rf6f-7fwh-wjgh | |
| XML Injection | |
| Improper Validation of Consistency within Input | |
| Interpretation Conflict | |
| GHSA-5fg8-2547-mr8q | |
| GHSA-37ch-88jc-xwx2 | |
| GHSA-25h7-pfq9-p65f | |
| GHSA-x6wf-f3px-wcqx | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| CVE-2026-4867 | |
| GHSA-j759-j44w-7fr8 | |
| XML Injection | |
| GHSA-h6q6-9hqw-rwfv | |
| XML Injection | |
| Uncontrolled Recursion | |
| GHSA-wh4c-j3r5-mjhp | |
| XML Injection | |
| XML Injection | |
| GHSA-3ppc-4f35-3m26 | |
| Inefficient Regular Expression Complexity | |
| Algorithmic Complexity | |
| GHSA-23c5-xmqv-rm74 | |
| Inefficient Regular Expression Complexity | |
| GHSA-7r86-cg39-jmmj | |
| GHSA-2328-f5f3-gj25 | |
| GHSA-5m6q-g25r-mvwx | |
| Improper Verification of Cryptographic Signature | |
| Improper Input Validation | |
| Improper Certificate Validation | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| GHSA-ppp5-5v6c-4jwp | |
| GHSA-q67f-28xg-22rw | |
| GHSA-hmw2-7cc7-3qxx | |
| Cross-site Scripting (XSS) | |
| Cross-site Scripting (XSS) | |
| GHSA-xhpv-hc6g-r9c6 | |
| GHSA-76mc-f452-cxcm | |
| CVE-2026-12143 | |
| GHSA-hpcv-96wg-7vj8 | |
| Cross-site Scripting (XSS) | |
| GHSA-vmf3-w455-68vh | |
| GHSA-2w6w-674q-4c4q | |
| Improper Check for Unusual or Exceptional Conditions | |
| GHSA-r47g-fvhr-h676 | |
| GHSA-xjpj-3mr7-gcpf | |
| Interpretation Conflict | |
| GHSA-cmwh-pvxp-8882 | |
| Arbitrary Code Injection | |
| GHSA-7c78-jf6q-g5cm | |
| GHSA-7rx3-28cr-v5wh | |
| Arbitrary Code Injection | |
| GHSA-442j-39wm-28r2 | |
| GHSA-vxr8-fq34-vvx9 | |
| Cross-site Scripting (XSS) | |
| GHSA-gvmj-g25r-r7wr | |
| GHSA-2qvq-rjwj-gvw9 | |
| GHSA-96hv-2xvq-fx4p | |
| GHSA-x4vx-rjvf-j5p4 | |
| Resource Exhaustion | |
| Improper Input Validation | |
| GHSA-rp9w-3fw7-7cwq | |
| GHSA-9cx6-37pm-9jff | |
| Cross-site Scripting (XSS) | |
| GHSA-3mfm-83xf-c92r | |
| Arbitrary Code Injection | |
| Use of Less Trusted Source | |
| GHSA-wgpf-jwqj-8h8p | |
| Improper Encoding or Escaping of Output | |
| Overly Permissive Cross-domain Whitelist | |
| Insufficient Verification of Data Authenticity | |
| Directory Traversal | |
| GHSA-j6c9-x7qj-28xf | |
| GHSA-wwfh-h76j-fc44 | |
| GHSA-rv63-4mwf-qqc2 | |
| GHSA-88fw-hqm2-52qc | |
| GHSA-p92q-9vqr-4j8v | |
| GHSA-hfxv-24rg-xrqf | |
| Improperly Controlled Modification of Dynamically-Determined Object Attributes | |
| Arbitrary Code Injection | |
| GHSA-j5f8-grm9-p9fc | |
| GHSA-898c-q2cr-xwhg | |
| GHSA-pjwm-pj3p-43mv | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-q8qp-cvcw-x6jj | |
| Information Exposure | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Unintended Proxy or Intermediary ('Confused Deputy') | |
| Information Exposure | |
| GHSA-3g43-6gmg-66jw | |
| GHSA-35jp-ww65-95wh | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Server-Side Request Forgery (SSRF) | |
| GHSA-3w6x-2g7m-8v23 | |
| Resource Exhaustion | |
| GHSA-777c-7fjr-54vf | |
| GHSA-9ppj-qmqm-q256 | |
| Directory Traversal | |
| GHSA-ph9p-34f9-6g65 | |
| CVE-2026-44974 | |
| GHSA-36hh-x5p5-jgc8 | |
| Directory Traversal | |
| GHSA-46wh-pxpv-q5gq | |
| Allocation of Resources Without Limits or Throttling | |
| Incorrect Authorization | |
| Directory Traversal | |
| GHSA-92pp-h63x-v22m | |
| CVE-2026-8723 | |
| GHSA-q8mj-m7cp-5q26 | |
| GHSA-wc8c-qw6v-h7f6 | |
| GHSA-298w-vvm4-ww55 | |
| GHSA-83g3-92jg-28cx | |
| GHSA-qffp-2rhf-9h96 | |
| Directory Traversal | |
| GHSA-r6q2-hw4h-h46w | |
| GHSA-34x7-hfp2-rc4v | |
| Improper Handling of Unicode Encoding | |
| Directory Traversal | |
| GHSA-8qq5-rm4j-mr97 | |
| Directory Traversal | |
| Directory Traversal | |
| GHSA-hm8q-7f3q-5f36 | |
| GHSA-v39h-62p7-jpjc | |
| Use of Uninitialized Resource | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Information Exposure Through Caching | |
| Arbitrary Code Injection | |
| Improper Validation of Specified Quantity in Input | |
| Arbitrary Code Injection | |
| CVE-2026-6322 | |
| Resource Exhaustion | |
| GHSA-v2v4-37r5-5v8g | |
| Cross-site Scripting (XSS) | |
| GHSA-58qx-3vcg-4xpx | |
| GHSA-69xw-7hcm-h432 | |
| GHSA-qjx8-664m-686j | |
| GHSA-9vqf-7f2p-gf9v | |
| GHSA-qp7p-654g-cw7p | |
| GHSA-p77w-8qqv-26rm | |
| GHSA-qj8w-gfj5-8c6v | |
| Resource Exhaustion | |
| GHSA-q3j6-qgpj-74h6 | |
| CVE-2026-6321 | |
| Out-of-bounds Write | |
| CVE-2026-5758 | |
| Cross-site Scripting (XSS) | |
| GHSA-crv5-9vww-q3g8 | |
| GHSA-h7mw-gpvr-xq4m | |
| GHSA-39q2-94rc-95cp | |
| GHSA-v9jr-rg53-9pgp | |
| Cross-site Scripting (XSS) | |
| GHSA-j452-xhg8-qg39 | |
| GHSA-w5hq-g745-h8pq | |
| Cross-site Scripting (XSS) | |
| Permissive Whitelist | |
| GHSA-xx6v-rp6x-q39c | |
| Uncontrolled Recursion | |
| CRLF Injection | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-445q-vr5w-6q77 | |
| HTTP Response Splitting | |
| GHSA-pmwg-cvhr-8vh7 | |
| Improper Authentication | |
| Server-Side Request Forgery (SSRF) | |
| Permissive Whitelist | |
| GHSA-6chq-wfr3-2hj9 | |
| GHSA-m7pr-hjqh-92cm | |
| GHSA-vf2m-468p-8v99 | |
| GHSA-xhjh-pmcv-23jw | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| GHSA-w9j2-pvgh-6h63 | |
| Improper Encoding or Escaping of Output | |
| GHSA-62hf-57xw-28j9 | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-pf86-5x62-jrwf | |
| GHSA-5c9x-8gcm-mpgx | |