| Incomplete Blacklist | |
| Incomplete Blacklist | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| Directory Traversal | |
| GHSA-39pp-xp36-q6mg | |
| GHSA-877v-w3f5-3pcq | |
| GHSA-x2cm-hg9c-mf5w | |
| GHSA-74wf-h43j-vvmj | |
| GHSA-89r3-6x4j-v7wf | |
| Exposure of Resource to Wrong Sphere | |
| GHSA-hr8g-2q7x-3f4w | |
| Insufficiently Protected Credentials | |
| GHSA-g86v-f9qv-rh6m | |
| GHSA-58q2-7r52-jq62 | |
| OS Command Injection | |
| GHSA-6336-qqw9-v6x6 | |
| GHSA-9q7v-8mr7-g23p | |
| GHSA-j9pv-rrcj-6pfx | |
| Incorrect Authorization | |
| GHSA-rg8m-3943-vm6q | |
| GHSA-h3x4-hc5v-v2gm | |
| Incorrect Authorization | |
| GHSA-p4x4-2r7f-wjxg | |
| Time-of-check Time-of-use (TOCTOU) | |
| GHSA-mw7w-g3mg-xqm7 | |
| Resource Exhaustion | |
| GHSA-g5cg-8x5w-7jpm | |
| Incorrect Authorization | |
| GHSA-xj9w-5r6q-x6v4 | |
| Time-of-check Time-of-use (TOCTOU) | |
| Time-of-check Time-of-use (TOCTOU) | |
| Reliance on Untrusted Inputs in a Security Decision | |
| GHSA-qcc3-jqwp-5vh2 | |
| GHSA-2w79-r9g8-wmcr | |
| CVE-2026-4923 | |
| GHSA-cg6c-q2hx-69h7 | |
| GHSA-q2qc-744p-66r2 | |
| GHSA-77w2-crqv-cmv3 | |
| Server-Side Request Forgery (SSRF) | |
| GHSA-3qpv-xf3v-mm45 | |
| GHSA-qm9x-v7cx-7rq4 | |
| GHSA-5h2w-qmfp-ggp6 | |
| GHSA-8rh7-6779-cjqq | |
| GHSA-wq58-2pvg-5h4f | |
| GHSA-rm59-992w-x2mv | |
| GHSA-6xg4-82hv-cp6f | |
| Incorrect Authorization | |
| Authorization Bypass Through User-Controlled Key | |
| CVE-2026-25679 | |
| Inclusion of Functionality from Untrusted Control Sphere | |
| GHSA-3298-56p6-rpw2 | |
| User Interface (UI) Misrepresentation of Critical Information | |
| GHSA-48vw-m3qc-wr99 | |
| GHSA-9p3r-hh9g-5cmg | |
| GHSA-v3qc-wrwx-j3pw | |
| GHSA-7ggg-pvrf-458v | |
| GHSA-3h52-cx59-c456 | |
| GHSA-jccr-rrw2-vc8h | |
| CVE-2026-27139 | |
| GHSA-rf6h-5gpw-qrgq | |
| GHSA-3xv9-89fm-7h4r | |
| GHSA-844j-xrrq-wgh4 | |
| GHSA-cfp9-w5v9-3q4h | |
| GHSA-4qwc-c7g9-4xcw | |
| Time-of-check Time-of-use (TOCTOU) | |
| GHSA-gg9v-mgcp-v6m7 | |
| GHSA-cg7q-fg22-4g98 | |
| GHSA-cj63-jhhr-wcxv | |
| GHSA-x2m8-53h4-6hch | |
| GHSA-f6pf-4gjx-c94r | |
| GHSA-g374-mggx-p6xc | |
| GHSA-vfg3-pqpq-93m4 | |
| CVE-2026-4926 | |
| GHSA-pw7h-9g6p-c378 | |
| GHSA-rfqg-qgf8-xr9x | |
| GHSA-j7p2-qcwm-94v4 | |
| GHSA-94pw-c6m8-p9p9 | |
| GHSA-3w6x-gv34-mqpf | |
| Incorrect Authorization | |
| GHSA-wj55-88gf-x564 | |
| GHSA-6mqc-jqh6-x8fc | |
| CVE-2026-27142 | |
| GHSA-f44p-c7w9-7xr7 | |
| GHSA-9hjh-fr4f-gxc4 | |
| GHSA-hf68-49fm-59cq | |
| CVE-2026-27138 | |
| Incorrect Authorization | |
| GHSA-fv94-qvg8-xqpw | |
| Incorrect Authorization | |
| Information Exposure Through Log Files | |
| Insufficient Session Expiration | |
| Improper Restriction of Excessive Authentication Attempts | |
| GHSA-rvvf-6vh3-9j43 | |
| Permissive Regular Expression | |
| GHSA-65h8-27jh-q8wv | |
| GHSA-5jvj-hxmh-6h6j | |
| GHSA-4hmj-39m8-jwc7 | |
| GHSA-9f4w-67g7-mqwv | |
| GHSA-rm5c-4rmf-vvhw | |
| CVE-2026-4800 | |
| CVE-2026-4867 | |
| GHSA-mhr7-2xmv-4c4q | |
| GHSA-8689-gm9g-jgr6 | |
| Incorrect Authorization | |
| CVE-2026-2950 | |
| GHSA-f693-58pc-2gfr | |
| GHSA-j4c9-w69r-cw33 | |
| Inefficient Regular Expression Complexity | |
| GHSA-vqvg-86cc-cg83 | |
| GHSA-rvqr-hrcc-j9vv | |
| GHSA-q9w8-cf67-r238 | |
| Improper Verification of Cryptographic Signature | |
| GHSA-9gp8-hjxr-6f34 | |
| Creation of Temporary File With Insecure Permissions | |
| GHSA-qxgf-hmcj-3xw3 | |
| Improper Validation of Specified Quantity in Input | |
| GHSA-m6fx-m8hc-572m | |
| GHSA-jjw7-3vjf-fg5j | |
| GHSA-52q4-3xjc-6778 | |
| GHSA-h4jx-hjr3-fhgc | |
| Directory Traversal | |
| Incorrect Authorization | |
| Incorrect Authorization | |
| GHSA-98hh-7ghg-x6rq | |
| GHSA-qcj9-wwgw-6gm8 | |
| GHSA-qm2m-28pf-hgjw | |
| GHSA-cxmw-p77q-wchg | |
| GHSA-9528-x887-j2fp | |
| GHSA-37v6-fxx8-xjmx | |
| Directory Traversal | |
| Time-of-check Time-of-use (TOCTOU) | |
| GHSA-5r8f-96gm-5j6g | |
| GHSA-ppwq-6v66-5m6j | |
| GHSA-xq8g-hgh6-87hv | |
| GHSA-vcx4-4qxg-mfp4 | |
| Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') | |
| GHSA-h5hg-h7rr-gpf3 | |
| GHSA-68v4-hmwv-f43h | |
| GHSA-8883-9w57-vwv6 | |
| GHSA-6p8r-6m93-557f | |
| GHSA-68f8-9mhj-h2mp | |
| GHSA-3pm9-5j7m-59vc | |
| GHSA-hr5v-j9h9-xjhg | |
| Authentication Bypass | |
| GHSA-rhfg-j8jq-7v2h | |
| GHSA-cwf8-44x6-32c2 | |
| Use of Insufficiently Random Values | |
| GHSA-mhgq-xpfq-6r66 | |
| Improper Restriction of Excessive Authentication Attempts | |
| GHSA-fqw4-mph7-2vr8 | |
| GHSA-7xr2-q9vf-x4r5 | |
| GHSA-hhq4-97c2-p447 | |
| GHSA-mp66-rf4f-mhh8 | |
| Incorrect Privilege Assignment | |
| GHSA-qf48-qfv4-jjm9 | |
| GHSA-h8r8-wccr-v5f2 | |
| GHSA-rqp8-q22p-5j9q | |
| GHSA-cwq8-6f96-g3q4 | |
| GHSA-39mp-545q-w789 | |
| GHSA-9wqx-g2cw-vc7r | |
| GHSA-9p93-7j67-5pc2 | |
| GHSA-xp9r-prpg-373r | |
| GHSA-jp4j-q5fc-58gv | |
| GHSA-hhff-fj5f-qg48 | |
| GHSA-xhq5-45pm-2gjr | |
| CVE-2026-27137 | |
| Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') | |
| GHSA-cqgw-44wg-44rf | |
| GHSA-p464-m8x6-vhv8 | |
| Uncontrolled Recursion | |
| GHSA-w85g-3h6x-4xh2 | |
| GHSA-chfm-xgc4-47rj | |
| GHSA-m866-6qv5-p2fg | |
| GHSA-g8xp-qx39-9jq9 | |
| GHSA-3cw3-5vxw-g2h3 | |
| GHSA-6pfc-6m7w-m8fx | |
| GHSA-hc5h-pmr3-3497 | |
| Incorrect Authorization | |
| GHSA-cjmm-f4jc-qw8r | |
| GHSA-wv46-v6xc-2qhf | |
| GHSA-gjm7-hw8f-73rq | |
| GHSA-mf5g-6r6f-ghhm | |
| GHSA-57gh-m6rq-54cf | |
| GHSA-w6m8-cqvj-pg5v | |
| Incorrect Authorization | |
| Not Failing Securely ('Failing Open') | |
| Incorrect Privilege Assignment | |
| Time-of-check Time-of-use (TOCTOU) | |
| Incorrect Authorization | |
| Incorrect Authorization | |
| Link Following | |
| Missing Authentication for Critical Function | |
| Interpretation Conflict | |
| Reliance on Untrusted Inputs in a Security Decision | |
| Insecure Default Initialization of Resource | |
| Authentication Bypass | |
| Incorrect Authorization | |
| Incorrect Permission Assignment for Critical Resource | |
| Reliance on Untrusted Inputs in a Security Decision | |
| Directory Traversal | |
| Allocation of Resources Without Limits or Throttling | |
| Incorrect Authorization | |
| Improper Handling of Highly Compressed Data (Data Amplification) | |
| Interpretation Conflict | |
| Incorrect Authorization | |
| Missing Authentication for Critical Function | |
| Incorrect Authorization | |
| OS Command Injection | |
| Incorrect Authorization | |
| Time-of-check Time-of-use (TOCTOU) | |
| Incorrect Authorization | |
| Server-Side Request Forgery (SSRF) | |
| OS Command Injection | |
| OS Command Injection | |
| Allocation of Resources Without Limits or Throttling | |
| Incorrect Authorization | |
| OS Command Injection | |
| Incomplete Blacklist | |
| Inclusion of Functionality from Untrusted Control Sphere | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| GHSA-jq3f-vjww-8rq7 | |
| GHSA-g2f6-pwvx-r275 | |
| GHSA-63f5-hhc7-cx6p | |
| GHSA-xwcj-hwhf-h378 | |
| GHSA-vr7j-g7jv-h5mp | |
| GHSA-m69h-jm2f-2pv8 | |
| CVE-2026-2229 | |
| GHSA-5m9r-p9g7-679c | |
| GHSA-r7vr-gr74-94p8 | |
| GHSA-7h7g-x2px-94hj | |
| CVE-2026-1528 | |
| CVE-2026-2581 | |
| GHSA-g353-mgv3-8pcj | |
| Improper Handling of Highly Compressed Data (Data Amplification) | |
| CVE-2026-1527 | |
| GHSA-rqpp-rjj8-7wv8 | |
| CVE-2026-1526 | |
| CVE-2026-1525 | |
| GHSA-99qw-6mr3-36qr | |
| GHSA-f5mf-3r52-r83w | |
| GHSA-xvx8-77m6-gwg6 | |
| GHSA-vmhq-cqm9-6p7q | |
| GHSA-xf99-j42q-5w5p | |
| GHSA-4jpw-hj22-2xmc | |
| GHSA-9vvh-2768-c8vp | |
| GHSA-qvr7-g57c-mrc7 | |
| GHSA-qc36-x95h-7j53 | |
| GHSA-jf6w-m8jw-jfxc | |
| GHSA-f8r2-vg7x-gh8m | |
| GHSA-4w7m-58cg-cmff | |
| GHSA-rw39-5899-8mxp | |
| GHSA-wcxr-59v9-rxr8 | |
| GHSA-8jhh-jcqg-mj5p | |
| GHSA-xw77-45gv-p728 | |
| GHSA-mj4p-rc52-m843 | |
| GHSA-2rqg-gjgv-84jm | |
| GHSA-vhwf-4x96-vqx2 | |
| Origin Validation Error | |
| GHSA-gp3q-wpq4-5c5h | |
| GHSA-v8cg-4474-49v8 | |
| GHSA-g7cr-9h7q-4qxq | |
| GHSA-8g75-q649-6pv6 | |
| GHSA-qcc4-p59m-p54m | |
| GHSA-mgrq-9f93-wpp5 | |
| Authentication Bypass | |
| Directory Traversal | |
| Loop with Unreachable Exit Condition ('Infinite Loop') | |
| GHSA-v8w9-8mx6-g223 | |
| GHSA-r6qf-8968-wj9q | |
| GHSA-3h2q-j2v4-6w5r | |
| GHSA-9q2p-vc84-2rwm | |
| GHSA-rchv-x836-w7xp | |
| GHSA-6rmx-gvvg-vh6j | |
| GHSA-hfpr-jhpq-x4rm | |
| GHSA-9q36-67vc-rrwg | |
| GHSA-pjvx-rx66-r3fg | |
| GHSA-6mgf-v5j7-45cr | |
| GHSA-j425-whc4-4jgc | |
| OS Command Injection | |
| GHSA-474h-prjg-mmw3 | |
| GHSA-cfvj-7rx7-fc7c | |
| Arbitrary Code Injection | |
| GHSA-3pxq-f3cp-jmxp | |
| GHSA-2858-xg23-26fp | |
| Improper Handling of URL Encoding (Hex Encoding) | |
| GHSA-77hf-7fqf-f227 | |
| GHSA-wpg9-4g4v-f9rc | |
| GHSA-8mvx-p2r9-r375 | |
| GHSA-h3rm-6x7g-882f | |
| GHSA-r54r-wmmq-mh84 | |
| GHSA-x4vp-4235-65hg | |
| Directory Traversal | |
| Incorrect Authorization | |
| Inappropriate Comment Style | |
| Cross-site Scripting (XSS) | |
| GHSA-v865-p3gq-hw6m | |
| GHSA-3jx4-q2m7-r496 | |
| GHSA-x2ff-j5c2-ggpr | |
| GHSA-q6qf-4p5j-r25g | |
| GHSA-jwf4-8wf4-jf2m | |
| GHSA-vjp8-wprm-2jw9 | |
| GHSA-f6h3-846h-2r8w | |
| GHSA-4rqq-w8v4-7p47 | |
| GHSA-8cp7-rp8r-mg77 | |
| GHSA-jjgj-cpp9-cvpv | |
| GHSA-9mph-4f7v-fmvh | |
| GHSA-vvjh-f6p9-5vcf | |
| GHSA-25gx-x37c-7pph | |
| GHSA-qhrr-grqp-6x2g | |
| GHSA-xmv6-r34m-62p4 | |
| GHSA-5847-rm3g-23mw | |
| GHSA-rm2p-j3r7-4x4j | |
| GHSA-cjv3-m589-v3rx | |
| GHSA-534w-2vm4-89xr | |
| GHSA-h656-5vcf-cm23 | |
| GHSA-8fmp-37rc-p5g7 | |
| GHSA-25pw-4h6w-qwvm | |
| GHSA-vj3g-5px3-gr46 | |
| GHSA-48wf-g7cp-gr3m | |
| GHSA-h9xm-j4qg-fvpg | |
| GHSA-gw85-xp4q-5gp9 | |
| GHSA-2ww6-868g-2c56 | |
| GHSA-jj82-76v6-933r | |
| GHSA-9868-vxmx-w862 | |
| GHSA-5h2c-8v84-qpvr | |
| GHSA-w7j5-j98m-w679 | |
| GHSA-vvgp-4c28-m3jm | |
| GHSA-mqr9-vqhq-3jxw | |
| GHSA-2ch6-x3g4-7759 | |
| GHSA-45cg-2683-gfmq | |
| GHSA-pj5x-38rw-6fph | |
| GHSA-pfv7-rr5m-qmv6 | |
| GHSA-vqx8-9xxw-f2m7 | |
| GHSA-jxrq-8fm4-9p58 | |
| GHSA-w9cg-v44m-4qv8 | |
| GHSA-f8mp-vj46-cq8v | |
| GHSA-vmqr-rc7x-3446 | |
| GHSA-jv6r-27ww-4gw4 | |
| GHSA-7fcc-cw49-xm78 | |
| GHSA-9p38-94jf-hgjj | |
| GHSA-2rgf-hm63-5qph | |
| GHSA-7f4q-9rqh-x36p | |
| GHSA-3cvx-236h-m9fj | |
| GHSA-62f6-mrcj-v8h5 | |
| GHSA-jmmg-jqc7-5qf4 | |
| GHSA-qj22-xqjr-v83v | |
| GHSA-r9q5-c7qc-p26w | |
| GHSA-fg3m-vhrr-8gj6 | |
| GHSA-4gc7-qcvf-38wg | |
| GHSA-2fgq-7j6h-9rm4 | |
| GHSA-wpph-cjgr-7c39 | |
| GHSA-ccg8-46r6-9qgj | |
| GHSA-g75x-8qqm-2vxp | |
| GHSA-3c6h-g97w-fg78 | |
| GHSA-r65x-2hqr-j5hf | |
| GHSA-6g25-pc82-vfwp | |
| GHSA-43x4-g22p-3hrq | |
| GHSA-mwxv-35wr-4vvj | |
| GHSA-8mf7-vv8w-hjr2 | |
| GHSA-3xfw-4pmr-4xc5 | |
| GHSA-2mc2-g238-722j | |
| GHSA-hff7-ccv5-52f8 | |
| GHSA-mwcg-wfq3-4gjc | |
| GHSA-2hm8-rqrm-xfjq | |
| GHSA-553v-f69r-656j | |
| GHSA-6rcp-vxwf-3mfp | |
| GHSA-gcj7-r3hg-m7w6 | |
| GHSA-ff98-w8hj-qrxf | |
| GHSA-v3j7-34xh-6g3w | |
| GHSA-7ff8-xjh3-mgh6 | |
| GHSA-27cr-4p5m-74rj | |
| GHSA-j4xf-96qf-rx69 | |
| GHSA-3x3x-h76w-hp98 | |
| GHSA-354r-7mfh-7rh2 | |
| GHSA-rv2q-f2h5-6xmg | |
| GHSA-4cqv-h74h-93j4 | |
| GHSA-vffc-f7r7-rx2w | |
| GHSA-j26j-7qc4-3mrf | |
| GHSA-h97f-6pqj-q452 | |
| GHSA-659f-22xc-98f2 | |
| GHSA-33hm-cq8r-wc49 | |
| GHSA-r294-2894-92j3 | |
| GHSA-m8v2-6wwh-r4gc | |
| GHSA-w76h-8m22-hpgh | |
| GHSA-xgf2-vxv2-rrmg | |
| GHSA-v6x2-2qvm-6gv8 | |
| GHSA-792q-qw95-f446 | |
| GHSA-7qf6-h84j-8fq4 | |
| GHSA-gq83-8q7q-9hfx | |
| GHSA-9f72-qcpw-2hxc | |
| GHSA-x9cf-3w63-rpq9 | |
| GHSA-5gj7-jf77-q2q2 | |
| GHSA-796m-2973-wc5q | |
| GHSA-56pc-6hvp-4gv4 | |
| GHSA-5ghc-98wh-gwwf | |
| GHSA-wm8r-w8pf-2v6w | |
| GHSA-fqcm-97m6-w7rm | |
| GHSA-g99v-8hwm-g76g | |
| GHSA-8m9v-xpgf-g99m | |
| GHSA-jq4x-98m3-ggq6 | |
| GHSA-gwqp-86q6-w47g | |
| GHSA-vpj2-69hf-rppw | |
| GHSA-x82f-27x3-q89c | |
| GHSA-5v6x-rfc3-7qfr | |
| GHSA-rx3g-mvc3-qfjf | |
| GHSA-hjvp-qhm6-wrh2 | |
| GHSA-6j27-pc5c-m8w8 | |
| GHSA-6x2m-hqfw-hvpj | |
| GHSA-wr6m-jg37-68xh | |
| GHSA-q399-23r3-hfx4 | |
| GHSA-mfg5-7q5g-f37j | |
| GHSA-c6hr-w26q-c636 | |
| GHSA-392f-ggf5-fp3c | |
| GHSA-p7gr-f84w-hqg5 | |
| GHSA-f7ww-2725-qvw2 | |
| GHSA-36h3-7c54-j27r | |
| GHSA-7xmq-g46g-f8pv | |
| GHSA-jr6x-2q95-fh2g | |
| GHSA-6f6j-wx9w-ff4j | |
| GHSA-fgvx-58p6-gjwc | |
| GHSA-ww6v-v748-x7g9 | |
| GHSA-hwpq-rrpf-pgcq | |
| GHSA-5f9p-f3w2-fwch | |
| GHSA-rxxp-482v-7mrh | |
| Buffer Overflow | |
| Incomplete Blacklist | |
| GHSA-82g8-464f-2mv7 | |
| GHSA-7jx5-9fjg-hp4m | |
| Algorithmic Complexity | |
| Inefficient Regular Expression Complexity | |
| Directory Traversal | |
| Directory Traversal | |
| Resource Exhaustion | |
| GHSA-gq3j-xvxp-8hrf | |
| Missing Authorization | |
| Incorrect Regular Expression | |
| Server-Side Request Forgery (SSRF) | |
| Symlink Following | |
| GHSA-6c9j-x93c-rw6j | |
| GHSA-4685-c5cp-vp95 | |
| Directory Traversal | |
| Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') | |
| Server-Side Request Forgery (SSRF) | |
| Directory Traversal | |
| Inefficient Regular Expression Complexity | |
| Improper Handling of Unicode Encoding | |
| Inefficient Regular Expression Complexity | |
| Directory Traversal | |
