7qb (=0.0.17), @4399ywkf/ui (=3.0.0-alpha.0) +576 more potentially affected by unknown CVE via @antv/algorithm (>=0.0.6 <=0.1.8-beta.6)

@antv/algorithm NPM version =0.0.6, =0.1.1, =0.1.2, =1.1.43, =5.0.48, =1.1.15, =1.0.5, =1.0.5, =1.0.5, =1.1.26, =0.2.11-dev-1, =0.1.0, =1.0.14, =2.6.7 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-3850...

WordPress Webenvo theme <= 0.0.6 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Denver Jackson in WordPress Theme Webenvo versions = 0.0.6...

CVE-2026-22041

Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in version 0.0.6. No...

CVE-2026-22041

Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in version 0.0.6. No...

CVE-2026-22041 loggingredactor converts non-string types to string types in logs

Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in version 0.0.6. No...

CVE-2026-22041

CVE-2026-22041 affects the Python library Logging Redactor. Prior to version 0.0.6, non-string data are coerced to strings, causing type errors in %d formatting. The issue is fixed in 0.0.6; multiple sources corroborate this patch. No exploit details are provided in the documents. Remediation: up...

CVE-2026-22041 loggingredactor converts non-string types to string types in logs

Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in version 0.0.6. No...

CVE-2026-22041 loggingredactor converts non-string types to string types in logs

Logging Redactor is a Python library designed to redact sensitive data in logs based on regex patterns and / or dictionary keys. Prior to version 0.0.6, non-string types are converted into string types, leading to type errors in %d conversions. The problem has been patched in version 0.0.6. No...

Incorrect Type Conversion or Cast

Overview loggingredactor is a Redact data in logs based on regex filters and keys Affected versions of this package are vulnerable to Incorrect Type Conversion or Cast via the RedactingFilter.redact method which converts all datatypes to string. An attacker can cause type errors and disrupt...

GHSA-RVJX-CFJH-5MC9 loggingredactor converts non-string types to string types in logs

Impact Non-string types are converted into string types, leading to type errors in %d conversions. Patches The problem has been patched in version 0.0.6. Workarounds None without patching. Resources Issue report: https://github.com/armurox/loggingredactor/issues/7 Release:...

loggingredactor converts non-string types to string types in logs

Impact Non-string types are converted into string types, leading to type errors in %d conversions. Patches The problem has been patched in version 0.0.6. Workarounds None without patching. Resources Issue report: https://github.com/armurox/loggingredactor/issues/7 Release:...

EUVD-2025-26946

Malicious code in bioql PyPI...

EUVD-2025-28517

Malicious code in bioql PyPI...

@diningcity/capacitor-qr-scanner (>=0.0.7 <=0.0.8), @mojitonft/hooks (=1.0.1-alpha.4) +93 more potentially affected by CVE-2025-26278 via dref (=0.0.6)

dref NPM version =0.0.6 is affected by a known vulnerability. The following packages have a transitive dependency on dref and may be impacted: - @diningcity/capacitor-qr-scanner =0.0.7, =1.7.0, =0.0.1, =11.1.1, =3.3.3, =0.0.0-beta, =0.0.2, =1.0.2, =0.0.40, =0.0.2, =0.0.1, =0.0.1, =0.1.0, =0.1.19...

CVE-2025-58831

CVE-2025-58831 describes a Cross-Site Request Forgery (CSRF) vulnerability in the Parallax Scrolling Enllax.js library, affecting versions up to 0.0.6. Multiple sources (NVD, CVE listings, Red Hat, CNNVD, PT Security) corroborate a CSRF issue in Parallax Scrolling Enllax.js and recommend upgradin...

WordPress Parallax Scrolling Enllax.js Plugin <= 0.0.6 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Mika in WordPress Plugin Parallax Scrolling Enllax.js versions = 0.0.6...

WordPress Parallax Scrolling Enllax.js Plugin <= 0.0.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Mika in WordPress Plugin Parallax Scrolling Enllax.js versions = 0.0.6...

WordPress plugin Parallax Scrolling Enllax.js 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

PT-2025-36170

Name of the Vulnerable Software and Affected Versions: Parallax Scrolling Enllax.js versions through 0.0.6 Description: A Cross-Site Request Forgery CSRF issue exists in Parallax Scrolling Enllax.js, potentially allowing attackers to perform actions on behalf of authenticated users...

LibreChat 授权问题漏洞

LibreChat is an enhanced ChatGPT clone by Danny Avila Personal Developer. An authorization issue vulnerability exists in LibreChat versions 0.0.6 through 0.7.7-rc1, which stems from a test endpoint exposure that could lead to the disclosure of arbitrary user chat logs...