| Resource Exhaustion | |
| CVE-2026-44903 | |
| Information Exposure | |
| NULL Pointer Dereference | |
| CVE-2026-39825 | |
| Link Following | |
| Improper Encoding or Escaping of Output | |
| CVE-2026-42499 | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| Allocation of Resources Without Limits or Throttling | |
| Cross-site Scripting (XSS) | |
| Double Free | |
| CVE-2026-42501 | |
| Out-of-bounds Write | |
| Cross-site Scripting (XSS) | |
| Allocation of Resources Without Limits or Throttling | |
| GHSA-j88v-2chj-qfwx | |
| CVE-2026-27143 | |
| Access of Resource Using Incompatible Type ('Type Confusion') | |
| CVE-2026-33816 | |
| CVE-2026-32280 | |
| Link Following | |
| Allocation of Resources Without Limits or Throttling | |
| Improper Certificate Validation | |
| Allocation of Resources Without Limits or Throttling | |
| Incorrect Authorization | |
| Cross-site Scripting (XSS) | |
| Improper Certificate Validation | |
| Uncontrolled Memory Allocation | |
| Untrusted Search Path | |
| Uncaught Exception | |
| Improper Authorization | |
| Cross-site Scripting (XSS) | |
| Improper Certificate Validation | |
| Direct Request ('Forced Browsing') | |
| Improper Certificate Validation | |
| Directory Traversal | |
| Untrusted Search Path | |
| Improper Initialization | |
