See the full list of npm packages affected by the "Mastra Supply Chain Compromise - June 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- M
Inadequate Encryption StrengthCVE-2025-45769
Affects firebase/php-jwt | Versions <7.0.0
Has fix
ComposerPublished 1 Aug 2025
- H
Insecure EncryptionCVE-2021-46743
Affects firebase/php-jwt | Versions <6.0.0
Has fix
ComposerPublished 29 Mar 2022
Affects firebase/php-jwt | Versions <2.0.0
Has fix
ComposerPublished 1 Apr 2015
- H
Cross-site Scripting (XSS)CVE-2026-42548
Affects flightphp/core | Versions <3.18.1
Has fix
ComposerPublished 10 May 2026
- M
Directory TraversalCVE-2026-42549
Affects flightphp/core | Versions <3.18.1
Has fix
ComposerPublished 10 May 2026
- H
Interpretation ConflictCVE-2026-42551
Affects flightphp/core | Versions <3.18.1
Has fix
ComposerPublished 10 May 2026
- H
Information ExposureCVE-2026-42552
Affects flightphp/core | Versions <3.18.1
Has fix
ComposerPublished 10 May 2026
- H
SQL InjectionCVE-2026-42550
Affects flightphp/core | Versions <3.18.1
Has fix
ComposerPublished 10 May 2026
- L
Improper Restriction of Rendered UI Layers or FramesCVE-2026-25681
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
- L
Improper Restriction of Rendered UI Layers or FramesCVE-2026-42502
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
- L
Improper Restriction of Rendered UI Layers or FramesCVE-2026-27136
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
- L
Resource ExhaustionCVE-2026-25680
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
- L
Cross-site Scripting (XSS)CVE-2026-42506
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
Affects frankenphp-8.2 | Versions <1.12.3-r3
Has fix
chainguard:latestPublished 2 Jun 2026
- L
CVE-2026-46595CVE-2026-46595
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Deserialization of Untrusted DataCVE-2026-39832
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Improper Certificate ValidationCVE-2026-39828
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
CVE-2026-46598CVE-2026-46598
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Out-of-BoundsCVE-2026-39830
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Missing AuthorizationCVE-2026-39831
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Integer Overflow or WraparoundCVE-2026-39834
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Missing AuthorizationCVE-2026-39833
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Incorrect Type Conversion or CastCVE-2026-46597
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Improper Verification of Cryptographic SignatureCVE-2026-39829
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026
- L
Improper Certificate ValidationCVE-2026-39835
Affects frankenphp-8.2 | Versions <1.12.3-r2
Has fix
chainguard:latestPublished 29 May 2026