3 matches found
EUVD-2026-16890
Locutus Prototype Pollution due to incomplete fix for CVE-2026-25521...
1dr-twig-templating (=1.0.2), 433bf (=0.0.1) +948 more potentially affected by CVE-2026-25521 +1 more via locutus (=2.0.39)
locutus NPM version =2.0.39 is affected by a known vulnerability. The following packages have a transitive dependency on locutus and may be impacted: - 1dr-twig-templating =1.0.2 - 433bf =0.0.1 - @27works/posto =2.0.2 - @2gis/js-docs-generator =0.0.1, =0.0.1, =1.0.2, =1.0.5, =0.0.1, =0.1.0, =1.0....
CVE-2026-25521
creationtimestamp| type| source ---|---|--- 2026-02-02 16:28:33+00:00| published-proof-of-concept| https://github.com/locutusjs/locutus/security/advisories/GHSA-rxrv-835q-v5mh 2026-03-28 02:16:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mi3kuvs2iv24 2026-04-01 15:25:32+00:00|...